Wordpress, has released an urgent security update that everyone should upgrade to ASAP.
If you have registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog. In addition to fixing this security flaw, 2.3.3 fixes a few minor bugs. If you are interested only in the security fix, download the fixed version of xmlrpc.php and copy it over your existing xmlrpc.php. Otherwise, you can get the entire release here.
Also, there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an update is available from its author.
Since we are talking security, remember to use strong passwords and change them regularly. While you’re updating WP and your plugins, consider refreshing your passwords.
Popularity: 100% [?]
Loading ...
Loading ...
February 12th, 2008 at 6:07 am
Hi there…Thanks for the nice read, keep up the interesting posts..what a nice Tuesday
February 13th, 2008 at 6:50 am
There’s a trick, you know.
February 19th, 2008 at 6:05 am
Hello webmaster…Man i love reading your blog, interesting posts ! it was a great Tuesday
March 5th, 2008 at 4:32 pm
There’s a trick, you know.
March 6th, 2008 at 5:01 pm
Wp-forum, I was not aware there was such a plugin. Ill have to check it even though it may not be secure.