The WordPress blog just revealed that WordPress 2.3.3 is out, and it is supposed to be an “urgent security release.” Here is what it is about:

A flaw was found in our XML-RPC implementation such that a specially crafted request would allow any valid user to edit posts of any other user on that blog.

Honestly I think that these constant security updates are starting to get cumbersome. The good thing is that this time and can update only the xmlrpc.php file.

Finally, there is also a bug on the WP-Forum plugin which is already being exploited, so check the upgrade if you use that plugin on your blog.