Reseller Hosting, Shared Hosting, Dedicated Hosting by Vortech Inc.

Go Back   Reseller Hosting, Shared Hosting, Dedicated Hosting by Vortech Inc. > >> General Public > Chit Chat Public
Reload this Page FYI wordpress vulnerability...
User Name
Password
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Chit Chat Public Talk about any thing you want! This forum is public.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 03-05-2007, 02:05 PM
bootNumlock's Avatar
bootNumlock bootNumlock is offline
Brangwyn fan club member
Vortech Inc. Customer
  
Location: chicago
FYI wordpress vulnerability...
not even sure if wordpress runs on any of our servers, but thought people should see this...

http://securitywatch.eweek.com/explo...EMNL030507EOAD
__________________
boot numlock
Reply With Quote
  #2  
Old 03-05-2007, 04:20 PM
Brangwyn Brangwyn is offline
T3CHN0 STUD
Vortech Inc. Customer
  
Location: New Zealand (Wellington)
Thanks for the heads up
Reply With Quote
  #3  
Old 03-05-2007, 04:31 PM
Ballyhoo's Avatar
Ballyhoo Ballyhoo is offline
Things are looking up!
Vortech Inc. Customer
  
Location: Here & There. Currently Here
Quote:
Originally Posted by Brangwyn
Thanks for the heads up

What he said.

And yes it does run here at VT. I have several going. Works good and is easy to install.
__________________
Up, up and whoa! Just getting out of my chair.
Reply With Quote
  #4  
Old 03-05-2007, 04:32 PM
Vidvandre's Avatar
Vidvandre Vidvandre is offline
BANNED
Banned
  
Quote:
Originally posted at WordPress.org on the 3rd of March
Long story short: If you downloaded WordPress 2.1.1 within the past 3-4 days, your files may include a security exploit that was added by a cracker, and you should upgrade all of your files to 2.1.2 immediately.
Ouch!
Anybody running WP should definitively read the information posted on WP.org and upgrade immediately...
Reply With Quote
  #5  
Old 03-05-2007, 07:10 PM
Ballyhoo's Avatar
Ballyhoo Ballyhoo is offline
Things are looking up!
Vortech Inc. Customer
  
Location: Here & There. Currently Here
Well personally I'm running 2.0.5 so I'll wait to make sure the gremlins are all worked out.
__________________
Up, up and whoa! Just getting out of my chair.
Reply With Quote
  #6  
Old 03-05-2007, 11:49 PM
Vidvandre's Avatar
Vidvandre Vidvandre is offline
BANNED
Banned
  
Quote:
Originally Posted by Ballyhoo
Well personally I'm running 2.0.5 so I'll wait to make sure the gremlins are all worked out.
This wasn't so much as a bug in WP, as it was a hacker breaking into WP.org's server and adding some "unusual and highly exploitable code in WordPress"...
Quote:
Originally posted at WordPress.org on the 3rd of March
It was determined that a cracker had gained user-level access to one of the servers that powers wordpress.org, and had used that access to modify the download file. (...) They modified two files in WP to include code that would allow for remote PHP execution.
Edit: Fixed some issues with the quotes...
Last edited by Vidvandre : 03-05-2007 at 11:54 PM.
Reply With Quote
Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
AWStats - Vulnerability? mdwatkin Chit Chat Public 4 02-10-2005 08:00 PM
mnoGoSearch vulnerability cardmagic Chit Chat Public 0 07-27-2003 05:45 AM


All times are GMT -5. The time now is 01:46 AM.

Contact Us - Vortech Inc. - Archive - Privacy Statement - Top

Powered by vBulletin Version 3.5.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Vortech Inc. ©2005
Page generated in 0.56513 seconds with 18 queries
[Output: 60.85 Kb. compressed to 56.53 Kb. by saving 4.32 Kb. (7.10%)]