WordPress team has come up with yet another security fix (1.5.1.2), which fixes the fix (1.5.1.1), which fixes the fix (1.5.1), which is a fix for undisclosed security defects in WordPress 1.5. Update: Now it should read: WordPress team has come up with yet another security fix (1.5.1.3) which fixes the (yet another undisclosed security risk) fix(1.5.1.2), which fixes the fix (1.5.1.1), which fixes the fix (1.5.1), which is a fix for undisclosed security defects in WordPress 1.5. Ok now I am jaded. I have provided a patch for others like me to easily upgrade from 1.5.1.2 to 1.5.1.3. Are you confused? I am not but I am not happy either. It is clear that this code needs a serious third-party security audit. I am not a happy camper at how the security is being handled by this product. It is just patch-as-you-go approach combined with security-by-obscurity. News Flash! It doesn't work. Obviously the software is not being well tested before hasty releases as was clearly evident from the way 1.5.1 was broken at several places.