I’m not sure how I missed this for the last week but it looks like WordPress has released a new version and this one includes a security fix.

“WordPress 2.3.2 is an urgent security release that fixes a bug that can be used to expose your draft posts. 2.3.2 also suppresses some error messages that can give away information about your database table structure and limits and stops some information leaks in the XML-RPC and APP implementations. Get 2.3.2 now to protect your blog from these disclosures.”

Also, the new version allows you to create a custom database error page.

“Place your custom template at wp-content/db-error.php. If WP has a problem connecting to your database, this page will displayed rather than the default error message.”

I’ve seen DB errors on pages quite often for a number of different reasons and it’s always struck me as odd that there wasn’t a customized page similar to a 404 error page rather than the plain painful error message on a white background.  Anyway, as with any release that deals with security, I’d recommend you upgrade immediately.

Related Posts