09-Jul 2.8.1
20-Jul 2.8.2
03-Aug 2.8.3
12-Aug 2.8.4

Once again, it is termed a security release. According to Matt, if you are still using 2.8.3

a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.

So, go download 2.8.4 or upgrade using your WordPress dashboard.

Exactly 2 weeks after the release of its 2.8.2 version, WordPress.org has released WordPress 2.8.3. This release has been termed as a “security release”, as some of the vulnerabilities of 2.8.1 were not fixed by 2.8.2. Ryan Boren advises:

Since this is a security release, upgrading is highly recommended.

So, if you are running your site on WordPress, go ahead and upgrade now. Don’t forget to backup your data. I am still looking for an easier way to take a backup. As I said in my last “upgrade” post, the easiest way I know to back up your WordPress blog is to go to Tools » Export in your dashboard. However, for bigger blogs, it creates an issue because while restoring your site, importing a file larger than 2 MB creates an error unless you change your php.ini file. I will write more about that soon.