WordPress 2.7.1发布很长时间了，一直在用2.6.3，因为2.7的变化比较大，怕升级后现有插件和模板等不能很好的兼容新版本，所以一直没升级。前两天买了Lunarpages的Basic空间，把cobeta.net转到那边了，用的也是2.6.3的WordPress。今天收到Lunarpages邮件，说我的空间里存有不安全的脚本。
既然这样就赶紧升级吧，去官方下载最新版本安装包，上传到服务器，覆盖旧文件，进后台，提示数据库需要升级，升级后成功登录后台，2.7版的后台界面的确比以前舒服的多，后台主界面的快速发布文章和快速回复评论的功能很人性化。进入插件看了下，除Simple Tags不能用以外，其他都显示正常，之前插件用着都没什么问题，所以也没升级过，看到好几个插件都有新版本发布，Simple Tags也有了新版本。便一口气把插件全部更新了下，果然，Simple Tags也可以正常使用了。发布这篇文章的时候，界面上有个Warring，显示wp-CJK-excerpt插件有问题，其实这个插件早已不用，禁用后，一切正常。
总之，WordPress 2.7.1的升级过程还是比较顺利的，大部分插件不需要更新，个别插件在更新版本后都能正常使用。

附Lunarpages的来信：

Dear Customer,

Our server scanner has detected a possible vulnerable script on your account which may require updating.

If you find your script has been incorrectly tagged as out of date, please accept our sincere apologies and feel free to report any false positives. Insecure scripts can lead to compromised accounts and defacing of files which can have a severe effect on your security. This automated script is searching for any installations which are not running the very latest release.

We understand that your version may be patched or not affected by any current security alerts, however we like to ensure these issues are well publicized and that all customers are aware.
We do urge you to update to the very latest if possible.
Please see http://www.lunarforums.com/lunarpages_web_hosting_
announcements/latest_server_scans_for_outdated_scripts-t47478.0.html for further information, this notice is an advisory only.

If you are having difficulty updating your scripts, please contact our support department who will be happy to render advice, you can do this by simply replying
to this email. We do understand that some fantastico installations may not have the very latest versions at this time.

Thank you in advance for your time and patience in dealing with this matter.

Kind Regards

lunarpages support

The following are the scripts:

Script: /******/public_html/cobeta/wp-includes/version.php
Description: Possible Vulnerable wordpress installation (Latest version > 2.6.5) prior versions open to XSS attacks

If you require any further information or help with regards to this, please contact support.
Kind Regards,

Lunarpages Support

P.S.
Lunarpages还是蛮负责任的，提醒我WordPress 2.6.5以下的版本存在漏洞，建议我升级新版本。我博客用的是Godaddy的空间，却从来没收到过这种建议性的邮件，呵呵。看来真要考虑全部搬家到Lunarpages了。