WordPress has recently released its latest update: WordPress 3.5.2 version. This is a security release for all previous versions and I strongly encourage you to update your WordPress website today. Many hackers exploit holes that have been identified in older versions of WordPress, so keeping your install up to date is another easy way to avoid trouble. Before updating WordPress to the latest version, be sure to create a full back up of your website.


San Mateo WebDesign, WordPress Website Backup

Make sure you back up your website before updating your theme, plugins and WordPress.

There are a number of ways to create a backup of your website.  I like to use Backup Buddy, a plugin developed by the geniuses at iThemes. There is a one time fee for this plugin but it is worth every penny and it will give you peace of mind that your website is backed up on a regular basis.

With BackupBuddy you can schedule backups and have them sent off-site to Dropbox, Amazon S3, Rackspace Cloud, an FTP server, or your email. Or download them right to your desktop. I like Backup Buddy because they offer additional features like Malware Scan.

If you are on a tight budget, I recommend a FREE plugin called  WordPress Backup to Dropbox, which automatically uploads a backup of your entire website, including all files and its database, to Dropbox. You will need to have an account set up with DropBox.

In the event you do not have a backup of your website and your website is hacked or goes down, you can always call your hosting company and ask them to restore your website.   Most hosting companies will keep a back up for up to 30 days but they will charge you anywhere from $150-$200 to restore your website.


Click here to watch my YouTube screencast on how to update WordPress or follow the instructions below.

When a new version of WordPress is available, you will receive a notification from your hosting company and you will see a notification in the WordPress dashboard/admin area. To update, log in to your WordPress dashboard and click the “Please Update Now” hyperlink listed at top of the browser. See screen shot below.


For security purposes, always make sure your website is up to date with the latest version of WordPress

Make sure you have a back up of your website. When you are ready, click the blue button “UPDATE NOW” to proceed with the upgrade.


Make sure you have a back up of your website. When you are ready, click the blue button “UPDATE NOW.”

Congratulations! You have successfully updated WordPress.


Congratulations! You have successfully updated WordPress.


Once installed, your WordPress will be successfully upgraded.

With the release of WordPress 3.5.2, the WordPress security team resolved seven security issues, and this release also contains some additional security hardening. According to WordPress.org, the security fixes include:

  • Blocking server-side request forgery attacks, which could potentially enable an attacker to gain access to a site.
  • Disallow contributors from improperly publishing posts or reassigning the post’s authorship.
  • An update to the SWFUpload external library to fix cross-site scripting vulnerabilities.
  • Prevention of a denial of service attack, affecting sites using password-protected posts.
  • An update to an external TinyMCE library to fix a cross-site scripting vulnerability.
  • Multiple fixes for cross-site scripting.
  • Avoid disclosing a full file path when a upload fails.

To learn more about the update, please read this blog post from WordPress.org

If you enjoyed this article, please subscribe to my feed and share it on your favorite social/bookmarking site. Thanks!
Subscribe in a reader