GoFuckYourself.com - Adult Webmaster Forum - View Single Post

Ecchi22 · 09-07-2008, 11:14 PM

There's new Wordpress exploit out there that can be dangerous..

Affected version is the newest one (2.6.1) and it works only if you have enabled user registration option.. It is disabled by default, so if you don't know what it is, relax.. But if you have it turned on, I'd recommend you to disable it for now, until someone post solution to this.

Attacker can change the Administrator password (but the real admin will receive the new password on his e-mail, so you'll notice it for sure)

Source: http://www.milw0rm.com/exploits/6397

09-07-2008, 11:14 PM
Ecchi22 Too lazy to set a custom title Industry Role: Join Date: Nov 2005 Posts: 10,012	Wordpress users beware! [Vulnerability] There's new Wordpress exploit out there that can be dangerous.. Affected version is the newest one (2.6.1) and it works only if you have enabled user registration option.. It is disabled by default, so if you don't know what it is, relax.. But if you have it turned on, I'd recommend you to disable it for now, until someone post solution to this. Attacker can change the Administrator password (but the real admin will receive the new password on his e-mail, so you'll notice it for sure) Source: http://www.milw0rm.com/exploits/6397 __________________