Today, as we just stayed at home, I upgraded all the sites using WordPress as CMS from WordPress 2.3.2 to WordPress 2.3.3. I started with Sehdi.com as a test. I had no problem at all, so I also upgraded SofieHofmann.com Blog, Pandan.ph, Tugbong.pandan.ph, Pandan.gov.ph News, Pagtatap.org, Weggis.net and LADiosoLibrary.org. But, is there really a need to upgrade from WordPress 2.3.2 to WordPress 2.3.3? My answer would be YES and NO!
YES, it is recommended to upgrade if you have your registration enabled and you have any other users aside from you. If not, you can leave it as it is, as it won’t really affect your site. If you still worry, you can just upload the fixed version of xmlrpc.php.
When I read about this security release, I just uploaded the fixed version of xmlrpc.php. But I kept on reading this text “A new version of WordPress is available! Please update now.” every time I logged in. So after 13 days I finally gave in. I upgraded all the 8 sites.
There’s a way, of course, if you don’t want to read that message anymore. All you have to do is upload the version.php file under the wp-includes folder. But I’m not comfortable doing it that way, so I upgraded the sites just like I normally do.
And NO, you don’t have to upgrade if your registration is disabled and you’re the only one who has access to your blog or site. Regarding the other minor bug fixes, if those few minor bugs do not also affect your site, then there’s really no need to upgrade. When I read what they fixed, the problems were at the version 2.2, 2.3 and 2.3.1. If you upgraded to WordPress 2.3.2 already, and you encountered no problem at all, then you have the option not to upgrade.
But if you haven’t upgraded to WordPress 2.3.2 yet, then you might be affected, so I suggest that you should upgrade to WordPress 2.3.3. That’s for your own security too. Remember before you upgrade, always backup your files and database.
Note from Sofie: This is just my opinion. It is always your decision whether to upgrade or not.