We have today released a small update to Simple:Press version 4.2.2 and recommend that all users of 4.2.2 or lower – which means those using WordPress 2.9.0 to 2.9.2 – grab this update. This is an important security release. It adds no new features but does update a couple of areas that were proven to be potentially insecure.
An update to our 4.3 family will be forthcoming very soon. We would like to thank those that helped us track these vulnerable areas down – the help and advice has been very much appreciated.
For those savvy users that know their way around the file system – the included Read Me document lists the files that have changed.