WordPress.org has just released a security update available for install through your WordPress dashboard or by downloading and installing the zip file manually.
The update is primarily targeted for WordPress sites that allow user signups and the new network features and addresses a problem where specific code can be run to inflate the user rights of a member allowing them higher then initially applied rights.
This is also a bug fix release that addresses some XSS Cross Site scripting problems.
If you are using 3.0.1 then it is recommended that you apply this new version as soon as possible.
For more information visit