WordPress 2.8.6 --------- Exploit

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • TheSenator
    Too lazy to set a custom title
    • Feb 2003
    • 13340

    #1

    WordPress 2.8.6 --------- Exploit

    http://www.net-security.org/secworld.php?id=8502


    Just upgrade and shut your mouth.
    ISeekGirls.com since 2005
  • Agent 488
    Registered User
    • Feb 2006
    • 22511

    #2
    WordPress 2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.

    Comment

    • TheSenator
      Too lazy to set a custom title
      • Feb 2003
      • 13340

      #3
      Upgrading.......


      Went smoothly....No for all my little blogs and clients.
      ISeekGirls.com since 2005

      Comment

      • d-null
        . . .
        • Apr 2007
        • 13724

        #4
        Originally posted by Agent 488
        WordPress 2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.
        probably going to wait for 2.8.7 then

        __________________

        Looking for a custom TUBE SCRIPT that supports massive traffic, load balancing, billing support, and h264 encoding? Hit up Konrad!
        Looking for designs for your websites or custom tubesite design? Hit up Zuzana Designs
        Check out the #1 WordPress SEO Plugin: CyberSEO Suite

        Comment

        • seeandsee
          Check SIG!
          • Mar 2006
          • 50945

          #5
          jesus will they make exploit free?
          BUY MY SIG - 50$/Year

          Contact here

          Comment

          • dav3
            Confirmed User
            • May 2007
            • 7348

            #6
            thanks for posting this

            2.8.6 just released, time to update.
            Webmasters :: Juicy Ads :: ACWM :: Crak Revenue :: Money Tree

            Comment

            • TidalWave
              Confirmed User
              • Sep 2007
              • 2706

              #7
              upgrading wordpress is a pain in the ass for me as the auto upgrade feature keeps failing at copying a file... sigh !
              www.SwiftNode.com

              Comment

              • fris
                Too lazy to set a custom title
                • Aug 2002
                • 55679

                #8
                pussy lips
                Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

                Comment

                • Juicy D. Links
                  So Fucking Banned
                  • Apr 2001
                  • 122992

                  #9
                  Originally posted by fris
                  pussy lips

                  Comment

                  • fris
                    Too lazy to set a custom title
                    • Aug 2002
                    • 55679

                    #10
                    also, this exploit is only for users who have posting privleges, so if you have trusted users, you have nothing to worry about.
                    Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

                    Comment

                    • JD
                      Too lazy to set a custom title
                      • Sep 2003
                      • 22651

                      #11
                      jesus christ...

                      Comment

                      • JamesK
                        hi
                        • Jun 2002
                        • 16731

                        #12
                        Originally posted by fris
                        also, this exploit is only for users who have posting privleges, so if you have trusted users, you have nothing to worry about.
                        exactly. 99.9% of the people here wont be affected at all.
                        M3Server - NATS Hosting

                        Comment

                        • Cyber Fucker
                          Hmm
                          • Sep 2005
                          • 12642

                          #13
                          Every another version has more and more holes that's also one of the reasons why I prefer to make older versions more secured instead of updating over and over again.

                          Comment

                          • LoveSandra
                            So Fucking Banned
                            • Aug 2008
                            • 10551

                            #14
                            thanks for posting

                            Comment

                            • CYF
                              Coupon Guru
                              • Mar 2009
                              • 10973

                              #15
                              thanks for the info

                              seems every 2 weeks a new wordpress exploit comes out.
                              Webmaster Coupons Coupons and discounts for hosting, domains, SSL Certs, and more!
                              AmeriNOC Coupons | Certified Hosting Coupons | Hosting Coupons | Domain Name Coupons

                              Comment

                              • Ginn
                                Confirmed User
                                • Apr 2009
                                • 627

                                #16
                                Yes, it probably won't take long to wait for a 2.8.7 version

                                DIAMONDGAYS.com - fresh twinks and best ratio! Highly recommended!

                                Comment

                                • BigRod
                                  Confirmed User
                                  • Apr 2005
                                  • 3685

                                  #17
                                  and if you have UNtrusted publishers the only question is WHY?
                                  Rod Macdonald
                                  Mainstream Ad Agency Owner
                                  ICQ: 607306

                                  Comment

                                  Working...