WordPress released a security update (version 3.3.2) that fixes 3 external libraries (Plupload, SWFUpload and SWFObject) as well as privilege escalation and cross-site script (XSS) issues as well as 5 other bugs. Change log posted here. The advisory is posted here and you can download the update here.
[1] http://core.trac.wordpress.org/log/branches/3.3?rev=20552stop_rev=20087
[2] http://wordpress.org/news/2012/04/wordpress-3-3-2/
[3] http://Pluploadwordpress.org/download/
-----------
Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
[1] http://core.trac.wordpress.org/log/branches/3.3?rev=20552stop_rev=20087
[2] http://wordpress.org/news/2012/04/wordpress-3-3-2/
[3] http://Pluploadwordpress.org/download/
-----------
Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.