installations received a security upgrade on Friday to patch a number of vulnerabilities. The update
to version 3.3.2, as well as 3.4 Beta 3, fixes issues in file uploaders Plupload and SWFUpload, and Adobe Flash embedding tool SWFObject. The new version also comes with fixes for several privilege escalation and cross-site scripting bugs. Cyber criminals heavily use
vulnerable WordPress sites to spread malware, and they may have been
utilized in the recent Flashback trojan attacks on Mac OS X systems.