WordPress Version 2.1.1 Hacked – MAJOR VULNERABILITY ALERT

March 4th, 2007

Hi everyone – I just thought I’d let you know about an urgent notice from wordpress that I have been advised about.

It seems that about 3 days ago, a hacker infiltrated the wordpress servers, and inserted a vulnerability in WordPress version 2.1.1 which allows the hacker to execute php code of his or her liking on your server – potentially very dangerous indeed.

If you have recently updated your blog to wordpress version 2.1.1, please immediately upgrade to 2.1.2 – as per this WORDPRESS EXPLOIT ALERT.

In general, WordPress are asking ALL users running 2.1.1 to upgrade immediately.

Cheers,

TheDuck

Digg!

Entry Filed under: 1. Wordpress

If you found this page useful, consider linking to it.
Simply copy and paste the code below into your web site (Ctrl+C to copy)
It will look like this: WordPress Version 2.1.1 Hacked – MAJOR VULNERABILITY ALERT

7 Comments Add your own

  • 1. Susie J  |  March 4th, 2007 at 9:17 am

    Remember I held my breath during that part? (I think you did too..) I need a quick tutorial.

  • 2. Susie J  |  March 4th, 2007 at 10:01 am

    Duck, I think I’m OK. The wordpress site says if you downloaded wordpress 2.1 within the last 3-4 days, you’re at risk. We did it around the 15th, so I think I’m fine. However, I would like to know how to do this scary, scary, hold-my-breath upgrade thing.
    Thanks

  • 3. Problems in Blogville - s&hellip  |  March 4th, 2007 at 11:29 am

    […] you use WordPress, you should be too,) alerted us to the fact that there’s been some kind of security breach with the latest version of WordPress, which is the verion I have. I won’t be upgrading to the new version soon. My eyes get kind of […]

  • 4. JohnMu  |  March 5th, 2007 at 6:26 am

    Someone also needs to blog about the Headzoo Live WordPress Plugin hack that you have installed ;-). It would be a shame to see it only mentioned in some obscure Google Group…. Someone needs to step up and be a leader with regards to publishing that fix.

  • 5. DuckMan  |  March 5th, 2007 at 7:16 am

    On the top of my list of things to Blog about – I will do – it fits the ‘aims’ of this blog well..

    At the moment writing a dissertation about the evils of supplementals and how to be rid of them 😀 After that, next stop is headzoo.

    John.. have you ever had much success / experience with adsense section targetting? I’m writing about it at the moment and have set up a test page over at beta.utheguru.com, but aint having much success getting it to tailor the ads..

    M

  • 6. JohnMu  |  March 5th, 2007 at 7:35 am

    Section targeting takes about a week, with regular traffic. I would first test it with only one section selected.

    J

  • 7. DuckMan  |  March 5th, 2007 at 7:37 am

    Thanks John – cheers – that was one of the little gems I picked up at the adsense conference in Brisbane that I hadn’t known about.

    By the way, I can’t remember whether I told you or not, but Adam Lasnik did get back to me re: Sydney, but unfortunately no go due to the fact it wasn’t a G conference, so no spare tickets.

    M

Leave a Comment

Required

Required, hidden

Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

Trackback this post  |  Subscribe to the comments via RSS Feed

Featured Advertiser

Buy me a beer!

This sure is thirsty work - Here's your chance to buy me a beer :)

Links

Feeds

Posts by Month