1. First issue with 2.5: the file uploader is incompatible with mod_security(*). All file uploads fails and mod_security log reports:

    [/wp-admin/async-upload.php][1] Access denied with code 403. Error processing request body: Multipart: final boundary missing

    To temporary fix this problem, add the following rules into your .htaccess:

    <IfModule mod_security.c>
    <Files async-upload.php>
    SecFilterEngine Off
    SecFilterScanPOST Off

    Source: http://wordpress.org/support/topic/162373?replies=12

    (*) http://www.modsecurity.org/

  2. I have done the same with my blog. I use the SVN upgrade functionality nowadays which makes upgrading really easy when a new vuln comes out!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.