Urgent: WordPress Security Fix

Urgent: WordPress Security Fix
BugsAlert Home > Urgent: WordPress Security Fix




LinuxSecurity.com: From the WordPress website: WordPress 2.3.3 is an urgent security release. If you have registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog. In addition to fixing this security flaw, 2.3.3 fixes a few minor bugs. If you are interested only in the security fix, download the fixed version of xmlrpc.php and copy it over your existing xmlrpc.php. Otherwise, you can get the entire release here. Also, there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an update is available from its author. Original Source: http://www.linuxsecurity.com/content/view/134026?rdf Learn more about Urgent: WordPress Security Fix


Tags: urgent wordpress security fix

Related Items
Four Good Choices for Your Next IDS
Ubuntu Security Update Fixes Samba "nmbd" Multiple Vulnerabilities
August 2007 - Microsoft Releases 9 Security Advisories
VU#393305:Microsoft Office mailto URI remote code execution
Vuln: Apple QuickTime RTSP Response Header Remote Stack Based Buffer Overflow Vulnerability
Admidio "file" Information Disclosure
Microsoft Windows ANI header stack buffer overflow