WordPress had just release a bug fixed for wordpress 2.2.2 that supposed to have a loop hole in the code. here are the changelog and fixed for previous version:

  • On Windows machines register_activation_hook() does not work if plugin is in a subfolder of the plugins dir
  • Proposal for a new plugin architecture
  • MAGPIE_USER_AGENT lack of wp version
  • Don’t return GMT date/time in XML-RPC, breaks some clients.
  • Invalid RSS2 Comments Feed
  • Users without unfiltered_html capability can post arbitrary html
  • WordPress Admin RTL files Bug Fix
  • Fix mt_allow_pings in metaWeblog.newPost (XML-RPC)
  • Corrected indentation in wp-mail.php

You can download and see more changes detail at WordPress Downloads

Related Articles:

Business
Why WordPress is the Best Platform for your Business Website
SEO News
WordPress Continues to Be the Best Performing CMS For SEO Results
Website Development
How WordPress Websites Can Be Made Future-Proof
Business
Uber is Planning an Air Cab Service