coyotecult - Slashdot User

Please create an account to participate in the Slashdot moderation system

Wordpress 2.1.1 Release Compromised by Cracker 48

Posted by Zonk on Saturday March 03, 2007 @02:34AM from the not-my-emo-comments-and-angsty-statements dept.

GrumpySimon writes "The recent 2.1.1 release of the popular blog software Wordpress was compromised by a cracker who made it easier for to execute code remotely. This is interesting because the official release was quietly and subtly compromised, and has been in the wild for a few days now. There's no word on if any affected sites have been compromised, but anyone running Wordpress is urged to upgrade to 2.1.2 immediately, and admins can check their logs for access to 'theme.php' or 'feed.php', and query strings with 'ix=' or 'iz=' in them."

« Newer Older »

Slashdot Top Deals

coyotecult (647958)

(email not shown publicly)
http://skittisheclipse.com/
AOL IM: Skittish Eclipse (Add Buddy, Send Message)
Yahoo! ID: rhapsodyofjade (Add User, Send Message)
I am a bioinformatics grad student at the University of Idaho with a bachelor's in CS, due to graduate this May. I wear domino socks and camo. If you know of any bioinformatics firms looking for scientific coders, hit me up.

coyotecult's Achievements

The Contradictor
Days Read in a Row
The Tagger

coyotecult's Comments

coyotecult's Tags

!politics (stories)
!google (stories)
women (stories)
bayofpigs (stories)
uk (stories)

The computer is to the information industry roughly what the central power station is to the electrical industry. -- Peter Drucker