Just an hour ago, a new upgrade to WordPress has been released, WordPress 2.3.2 is now out. As posted on the WP Development Blog:
WordPress 2.3.2 is an urgent security release that fixes a bug that can be used to expose your draft posts. 2.3.2 also suppresses some error messages that can give away information about your database table structure and limits and stops some information leaks in the XML-RPC and APP implementations. Get 2.3.2 now to protect your blog from these disclosures.
As a little bonus, 2.3.2 allows you to define a custom DB error page. Place your custom template at wp-content/db-error.php. If WP has a problem connecting to your database, this page will displayed rather than the default error message.
Wow, I’ve never heard of these bugs before and they sound quite scary. Your draft posts being leaked to the public right underneath your nose! It’s like being caught with your pants down and butt-naked in mall during a sale or Santa spoiling his surprise gifts because of a sneeze!
On the brighter side, the ability to customize the DB error page is a welcomed treat. Finally, we could do away with that dreadful DB error page, I believe it has the same effect on WP bloggers as the Blue Screen of Death has on poor Window$ users.