Skip to main content

Wordpress: Not Invulnerable Either

By
At least Wordpress will admit to their failings.

... This morning we received a note to our security mailing address about unusual and highly exploitable code in WordPress. The issue was investigated, and it appeared that the 2.1.1 download had been modified from its original code. We took the website down immediately to investigate what happened.

It was determined that a cracker had gained user-level access to one of the servers that powers wordpress.org, and had used that access to modify the download file. We have locked down that server for further forensics, but at this time it appears that the 2.1.1 download was the only thing touched by the attack. They modified two files in WP to include code that would allow for remote PHP execution ...
Labels:

Comments

Post a Comment

Popular posts from this blog

Add A Custom Redirect, If You Change A Post URL

By
When you rename a blog, the most that you can do, to keep the old URL useful, is to setup a stub post , with a clickable link to the new URL. Yo! The blog is now at xxxxxxx.blogspot.com!! Blogger forbids gateway blogs, and similar blog to blog redirections . When you rename a post, you can setup a custom redirect - and automatically redirect your readers to the post, under its new URL. You should take advantage of this option, if you change a post URL.
Post a Comment
Read more

What's The URL Of My Blog?

By
We see the plea for help, periodically I need the URL of my blog, so I can give it to my friends. Help! Who's buried in Grant's Tomb, after all? No Chuck, be polite. OK, OK. The title of this blog is "The Real Blogger Status", and the title of this post is "What's The URL Of My Blog?".
28 comments
Read more

Blogger Magic - Adding Label Search URLs

By
One of the simplest ways to make a blog useful is to add label searches. Adding label searches, in page / post text, is not easy - unless you know how to build the URLs. Here's a label search from this blog. http://blogging.nitecruzr.net/search/label/Blogger%20Magic All that I want, when using that label search, is to add another reference to my "Blogger Magic" post series. " Blogger Magic " emphasises how easy it is, to use Blogger. How easy is it, to remember that syntax - to add a label link? Maybe, a " Blogger Magic " reference, in this post?
3 comments
Read more