In case you’re not aware, WordPress released their security and maintenance update version 3.5.2 last week. The security fixes included with this release are:
- Server side requests that could enable an attacker to gain access to your site (forgery attacks) are now blocked.
- Scripting vulnerabilities in the SWFUpload and TinyMCE external libraries have been fixed.
- If you use password protected posts, denial of service attacks are now reportedly prevented.
- When an upload fails, your full file path is not disclosed.
I definitely recommend you update your WordPress photo blog to the current version if you have not done so already. As always, be sure to perform a backup of all your files and databases before you run the update!