WordPress 2.8.4 Security Realease

By | August 28, 2009

A vulnerability was discovered from previouse wordpress:

a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.

WordPress have fixed this problem and have been testing the fixes and looking for other problems since then. Version 2.8.4 which fixes all known problems is now available for download and is highly recommended for all users of WordPress.

VN:F [1.9.17_1161]
Rating: 0.0/5 (0 votes cast)
VN:F [1.9.17_1161]
Rating: 0 (from 0 votes)

2 Comments

raiderhost on August 28, 2009 at 22:03.

i’m pertamax broo ?? thankz for this info

VA:F [1.9.17_1161]
Rating: 0.0/5 (0 votes cast)
VA:F [1.9.17_1161]
Rating: 0 (from 0 votes)

Reply

MasEDI on September 2, 2009 at 09:09.

@raiderhost: Sheep…. mangtaps mas(ter)

VN:F [1.9.17_1161]
Rating: 0.0/5 (0 votes cast)
VN:F [1.9.17_1161]
Rating: 0 (from 0 votes)

Reply

Leave Your Comment

Your email will not be published or shared. Required fields are marked *

*

CAPTCHA Image

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

CommentLuv badge