Webmaster Forum


Go Back   Webmaster Forum > Blogging > Blogging Forum
Critical WordPress Update Critical WordPress Update
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Blogging Forum Discuss general blogging issues here - design, integration, posting, trackbacks, ETC. Also discuss blogs you like.

Lionsanime Directory   High Bandwidth Dedicated Servers   V7N Directory

Reply
 
LinkBack Thread Tools Display Modes
Old 03-03-2007, 11:53 AM   #1 (permalink)
Southern Brat
 
Cricket's Avatar
 
Join Date: 10-13-03
Location: Texas
Posts: 15,201
iTrader: 0 / 0%
Cricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster material
Critical WordPress Update
Forgive me if someone has already mentioned this...

Quote:
Long story short: If you downloaded WordPress 2.1.1 within the past 3-4 days, your files may include a security exploit that was added by a cracker, and you should upgrade all of your files to 2.1.2 immediately.
Longer explanation: This morning we received a note to our security mailing address about unusual and highly exploitable code in WordPress. The issue was investigated, and it appeared that the 2.1.1 download had been modified from its original code. We took the website down immediately to investigate what happened.

It was determined that a cracker had gained user-level access to one of the servers that powers wordpress.org, and had used that access to modify the download file. We have locked down that server for further forensics, but at this time it appears that the 2.1.1 download was the only thing touched by the attack. They modified two files in WP to include code that would allow for remote PHP execution.
http://wordpress.org/development/2007/03/upgrade-212/
__________________
GNC Web Creations - Free Search Engine Optimization Training Class
Website Development Training - Website Development Training Blog

What are you waiting for? Submit your site to directory.v7n.com today!
Cricket is online now  
Add Post to del.icio.us
Reply With Quote
Sponsored Links
SEO Hosting by HostGator  Advertise Here  Buy Blog Links
Old 03-05-2007, 03:52 PM   #2 (permalink)
Contributing Member
 
DarrenC's Avatar
 
Join Date: 02-23-06
Location: England
Posts: 1,567
iTrader: 0 / 0%
Latest Blog:
None

DarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web proDarrenC is a highly respected web pro
Send a message via MSN to DarrenC Send a message via Skype™ to DarrenC
Thanks Cricket for the notice
__________________
Blog Promotion Tips
DarrenC is offline  
Add Post to del.icio.us
Reply With Quote
Old 03-05-2007, 04:44 PM   #3 (permalink)
Southern Brat
 
Cricket's Avatar
 
Join Date: 10-13-03
Location: Texas
Posts: 15,201
iTrader: 0 / 0%
Cricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster material
You're welcome. It's a significant security risk, I so I wanted to make sure everyone had seen it.
__________________
GNC Web Creations - Free Search Engine Optimization Training Class
Website Development Training - Website Development Training Blog

What are you waiting for? Submit your site to directory.v7n.com today!
Cricket is online now  
Add Post to del.icio.us
Reply With Quote
Old 03-05-2007, 06:12 PM   #4 (permalink)
CEO, V7 Inc
 
John Scott's Avatar
 
Join Date: 09-27-03
Location: Japan, mostly
Posts: 42,620
iTrader: 2 / 100%
John Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster materialJohn Scott is supreme webmaster material
Send a message via AIM to John Scott Send a message via Yahoo to John Scott
Thanks Cricket!
__________________
Buy Permanent Contextual Links - V7N Web Directory

Questions? Call V7 toll free @ 1.888.876.8762
John Scott is offline  
Add Post to del.icio.us
Reply With Quote
Old 03-05-2007, 07:49 PM   #5 (permalink)
Inactive
 
Join Date: 01-18-06
Posts: 141
iTrader: 0 / 0%
Latest Blog:
Online game

Nameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the rough
My hosting provider sent me a notice for this one.

I have had http://www.dndaily.com running on wordpress.

It is a mess when something like this comes out unexpectedly.

Ruined my whole schedule of work.
Nameslot is offline  
Add Post to del.icio.us
Reply With Quote
Old 03-05-2007, 07:51 PM   #6 (permalink)
Southern Brat
 
Cricket's Avatar
 
Join Date: 10-13-03
Location: Texas
Posts: 15,201
iTrader: 0 / 0%
Cricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster materialCricket is supreme webmaster material
Quote:
Originally Posted by Nameslot View Post
It is a mess when something like this comes out unexpectedly.Ruined my whole schedule of work.
Why? It take about 3 minutes to update.
__________________
GNC Web Creations - Free Search Engine Optimization Training Class
Website Development Training - Website Development Training Blog

What are you waiting for? Submit your site to directory.v7n.com today!
Cricket is online now  
Add Post to del.icio.us
Reply With Quote
Old 03-05-2007, 08:36 PM   #7 (permalink)
Inactive
 
Join Date: 01-18-06
Posts: 141
iTrader: 0 / 0%
Latest Blog:
Online game

Nameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the roughNameslot is a jewel in the rough
But I have to look where it was parked. Then it was an addon so had to look which is the main domain. Then go to its cpanel and keep on guessing my password for atleast 10 times before I can go in.

Multiple servers and sites confuses me a lot.

I cannot write it on paper or Notepad.txt otherwise it will get stolen more faster then I forget the passwords.
Nameslot is offline  
Add Post to del.icio.us
Reply With Quote
Old 03-09-2007, 09:38 AM   #8 (permalink)
Contributing Member
 
jwalsh's Avatar
 
Join Date: 03-22-04
Location: Cleveland, OH
Posts: 388
iTrader: 0 / 0%
jwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to alljwalsh is a name known to all
I was affected.
__________________
Cleveland Web Application Development by Designing Interactive
jwalsh is offline  
Add Post to del.icio.us
Reply With Quote
Go Back   Webmaster Forum > Blogging > Blogging Forum

Reply

« Previous Thread | Next Thread »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Critical Self-Consciousness coberst Politics 1 11-13-2007 09:50 AM
Critical SEO Question phkharat SEO Forum 9 01-27-2007 04:28 PM
A critical rview invited webexplore Web Directory Issues 2 01-12-2007 09:45 AM
Need help - Critical review of my site from SEO perspective. badar SEO Forum 12 04-23-2006 12:28 AM
Has my site reached its critical mass? shanemckay Marketing Forum 8 05-28-2004 03:32 AM


Sponsor Links
Get exposure! Get exposure! Find Scripts Web Hosting Directory Get exposure! SEO Blog


Site Navigation: v7n Home .::. Graphics .::. Scripts .::. Web Designers .::. SEO Consultants .::. Web Hosting

Partners:V7N Web Directory .::. V7N Technology Blog .::. Host Ratings@V7N .::. V7N Affiliate Program .::. Advertise

All times are GMT -7. The time now is 02:30 PM.
© Copyright 2008 V7 Inc

Contact Us - Internet Marketing - Top