WordPress 2.3.3 is an urgent security release. If you have registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog.
![]()
Anneli Kruve from University of Tartu and Mr Peep Rausberg from EFSI. Also I would like to thank the board of EFSI for the help and support, my colleagues from the EFSI chemistry department, my friends, my family and my course mates.
![]() ![]()
In addition to fixing this security flaw, 2.3.3 fixes. If you are interested only in the security fix, download the and copy it over your existing xmlrpc.php. Otherwise, you can get the entire release.Also, there is that is being actively exploited right now. If you are using this plugin, please remove it until an update is available from its author.Since we are talking security, remember to use strong passwords and change them regularly. While you’re updating WP and your plugins, consider refreshing your passwords.
![]() Comments are closed.
|
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |