April 23, 2012, 12:32 PM —The WordPress development team released WordPress 3.3.2 on Friday in order to address several vulnerabilities in the popular blogging platform as well as in three external libraries that are bundled with it by default.Commentary:
Three media-handling libraries were updated and three native vulnerabilities were fixed in WordPress 3.3.2
The new WordPress version updates the bundled Plupload library to version 1.5.4 after its developers patched a cross-site request forgery (CSRF) vulnerability last week.
With the new security updates for WordPress, WordPress users should also pay attention to auto updates for plugins and their themes. StudioPress just released Genesis 1.8.1 updating Genesis 1.8.0 for example. Do upgrade your plugins along with WordPress to keep your site safe!