Security Release Of WordPress 2.8.4 !

Posted on August 13, 2009 | Leave a comment

In the earlier version of WordPress, a vulnerability has been discovered that is specially crafted URL could be requested that lets an attacker to bypass a security check in order to verify a user who has been requested for a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.

Click to look at previous version of WordPress to compare with the latest

WordpressVersion284

WordPress has fixed this problem last night and have been testing the fixes and looking for other problems since then. Version 2.8.4 which fixes all known problems is now available for download and is highly recommended for all users of WordPress.

Click to SOURCE and DOWNLOAD

[ More ]

Advertisement
This entry was posted in internet, software, Technology, wordpress and tagged , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s