GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   Wordpress 2.2.1 extremely vulnerabe to XSS - Warning (https://gfy.com/showthread.php?t=756856)

StarkReality 08-02-2007 05:50 AM
Wordpress 2.2.1 extremely vulnerabe to XSS - Warning
 
If you are running wordpress 2.2.1, everybody could inject links, post, delete stuff, this exploit basically gives full admin rights !

http://mybeni.rootzilla.de/mybeNi/20...rst_blog_worm/

Pay attention to "7.", that's what you have to worry about, the attack needs no authentication at all and your blog can be hijacked in a minute.

Aussie-Mark 08-02-2007 05:54 AM
thanks for the heads up

The Duck 08-02-2007 06:07 AM
Thank you.

Argoz 08-02-2007 06:31 AM
Thanks man!

born 08-02-2007 06:34 AM
Good heads up.. Thanks!

B-

alby_persignup 08-02-2007 06:59 AM
nice info!. thanks

V_RocKs 08-02-2007 07:31 AM
I have not found any machines yet that this #7 exploit works on.

Brujah 08-02-2007 12:38 PM
Did you install the "worm" he created to fix your broken blogs?


All times are GMT -7. The time now is 12:26 AM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123