WordPress had just release a bug fixed for wordpress 2.2.2 that supposed to have a loop hole in the code. here are the changelog and fixed for previous version:

  • On Windows machines register_activation_hook() does not work if plugin is in a subfolder of the plugins dir
  • Proposal for a new plugin architecture
  • MAGPIE_USER_AGENT lack of wp version
  • Don’t return GMT date/time in XML-RPC, breaks some clients.
  • Invalid RSS2 Comments Feed
  • Users without unfiltered_html capability can post arbitrary html
  • WordPress Admin RTL files Bug Fix
  • Fix mt_allow_pings in metaWeblog.newPost (XML-RPC)
  • Corrected indentation in wp-mail.php

You can download and see more changes detail at WordPress Downloads

Related Articles:

Website Development
How WordPress Websites Can Be Made Future-Proof
Business
Uber is Planning an Air Cab Service
Business
What Went down at SXSW 2018?
Website Development
Deal with the Errors on WordPress!