Taken from wordpress blog
WordPress 2.2.1 is now available. 2.2.1 is a bug fix release for the 2.2 series. Since 2.2 was released a month ago, the WordPress community has been improving fit-and-finish by identifying and fixing those little bugs that can be so annoying and by fine-tuning some small details. The result is a nicely polished 2.2.1 release.
Unfortunately, 2.2.1 is not just a bug fix release. Some security issues came to light during 2.2.1 development, making 2.2.1 a required upgrade. 2.2.1 addresses the following vulnerabilities:
- Remote shell injection in PHPMailer
- Remote SQL injection in XML-RPC Discovered by Alexander Concha.
- Unescaped attribute in default theme
I use instant upgrade as usual, upgrade with single click
I just know that by viewing source code you can see what wordpress version using by a blog.
Some interesting picture ( I make this screenshot at 21 2007 12) :
of course it’s easy to fake, simply changing header.php file (in theme folder)
<meta name="generator" content="WordPress <?php bloginfo(‘version’); ?>" />
<link rel="stylesheet" href="<?php bloginfo(‘stylesheet_url’); ?>" type="text/css" media="screen" />
<link rel="alternate" type="application/rss+xml" title="<?php bloginfo(‘name’); ?> RSS Feed" href="<?php bloginfo(‘rss2_url’); ?>" />
<link rel="pingback" href="<?php bloginfo(‘pingback_url’); ?>" />
changing bold into whatever version until have spare time for upgrade