An important security issue has been brought to the attention of the WordPress team and we have worked diligently to bring you a new stable release that addresses it. Our latest version 2.0.2 contains several bugfixes and security fixes.
I highly recommend that you download the newest release and upgrade your WordPress installation(s) ASAP (and backup your database before upgrading!).
For those of us with many blogs, this is one of those pains in the neck that makes you wish you had a hosted solution that did the upgrading for you. But all in all, the pros of getting all the features and customizability of the full version of WordPress makes it worth the hassle for those who are technically inclined enough to handle WordPress.
(The rest of you should check out WordPress.com — they’ve had a lot of upgrades lately, including new themes, WordPress Widgets, and more – which I’ll write about in a later post, but suffice it to say good things are happening over there 🙂 )
BTW – It has not been clarified whether this security vulnerability which was found (and fixed) was in any way related to the supposed hacking of the WP 2.0 Theme Competition that was being hosted by kycap.com, but based on the dialog in the WordPress support forums it does appear that the KYCAP theme competition was a hoax, which, if true, is just evil. Fortunately, a new WordPress 2.0 Theme Competition has sprung out of this mess and is being run and judged by some of the more well known and respected (i.e., trustworthy) members of the WP community