On November 12, 2009, WordPress released version 2.8.6. These fix several security issues with the WordPress.
One was a cross-site scripting issue or known as XSS for Press This. Normally with the press this function in your WordPress admin panel you can bookmark and publish your favorites to your site. What was happening was that hackers could infiltrate through this area and inject malicious scripts onto your published pages.
The other issue is an exploit of the Apache configurations of the server.
This only brings WordPress closer to 2.9 version release. You can download and upgrade WordPress 2.8.6 manually or for those who have not already noticed at the top of their WordPress administration panels the notice that an upgrade is available with one click.