Beginner's Guide for WordPress - Start your WordPress Blog in minutes.
Choosing the Best
WordPress Hosting
How to Easily
Install WordPress
WordPress Plugins
View all Guides

WordPress 2.8.5 – Hardening Release

Last updated on by
Special WordPress Hosting offer for WPBeginner Readers
WordPress 2.8.5 – Hardening Release

WordPress team has released WordPress 2.8.5 today as a hardening release to make WordPress extra secure. Because the update improves your site security, it is recommended that you upgrade as soon as possible.

The headline changes in this release are:

  • A fix for the Trackback Denial-of-Service attack that is currently being seen.
  • Removal of areas within the code where php code in variables was evaluated.
  • Switched the file upload functionality to be whitelisted for all users including Admins.
  • Retiring of the two importers of Tag data from old plugins.

If you think your blog was a victim of one of the recent exploits, WordPress recommends you to use WordPress Exploit Scanner to make sure that all traces of the exploit has been cleared.

Upgrade now, and make sure that you follow the Ultimate Guide to Upgrade WordPress.

Editorial Staff at WPBeginner is a team of WordPress experts led by Syed Balkhi. Page maintained by Syed Balkhi.

WPBeginner's Video Icon
Our HD-Quality tutorial videos for WordPress Beginners will teach you how to use WordPress to create and manage your own website in about an hour. Get started now »


  1. Shinzies says:

    @V,C making such statement is so wrong, doing some quick search i found that you are hosting i guess your website with xlhost. So of course it would not bother you if someones hardware is being abused. However people who run their own small blogs or websites should indeed upgrade to 2.8.5.

    Being an Editor of the site with Admin account is one thing.
    However being an system or network Admin is the other one.

    You yourself is nothing more than a reactive type of admin.. Fixing B.S after your stuff gets compromised..

    True security is done through proactive security, making sure that you test and then implement patches..

    Your choice!

    However do not make such trolling statements..

  2. Harsh Agrawal says:

    Saw this update Yesterday and the first thing which I did
    was Backup my Db and updated the wordpress. Though wordpress are releasing very quick update.. :|

  3. V,C says:

    I don’t understand why they released the new version so quickly after the last update 2 months ago.
    I don’t see any changing in this new version. It’s not really necessary to upgrade.

Add a Comment

We're glad you have chosen to leave a comment. Please keep in mind that all comments are moderated according to our comment policy, and all links are nofollow. Do NOT use keywords in the name field. Let's have a personal and meaningful conversation.