WordPress Shot in the Foot Saturday 2007-03-03
This is to alert you to immediately update your WP 2.1.1 installation, if you downloaded and installed that version lately.
As I wrote, not long ago “WordPress is Secure Blogging“. However destructors traveling cyberspace are getting cleverer each day. If you cannot penetrate the installed blogging platform, why not attack and change the distribution?
According to word from the WordPress blog
Long story short: If you downloaded WordPress 2.1.1 within the past 3-4 days, your files may include a security exploit that was added by a cracker, and you should upgrade all of your files to 2.1.2 immediately.
Longer explanation: This morning we received a note to our security mailing address about unusual and highly exploitable code in WordPress. The issue was investigated, and it appeared that the 2.1.1 download had been modified from its original code. We took the website down immediately to investigate what happened.
So, earlier versions of WordPress are not affected, and bloggers at wordpress.com are safe too. Only if you installed WP 2.1.1 lately, go ahead and install the update now!
- Posted in : WordPress
- Author : Petit
All Posts
del.icio.us
PetitOn Tellus
Comments»
no comments yet - be the first?