The WordPress development team blog has announced the release of WordPress 2.3.3, an urgent security release. If you’ve registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog.
In addition to fixing this security flaw, 2.3.3 fixes a few minor bugs. If you’re interested only in the security fix, download the fixed version of xmlrpc.php and copy it over your existing xmlrpc.php.
WordPress, Security, Release, Blogging Software, XMLRPC