1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

WordPress 2.1.1 Was cracked

Discussion in 'Security' started by dshah, May 4, 2007.

0
  1. #1
    Its unbelievable, but true. Some cracker gained access to wordpress.org SVN and modified files to inject exploit. So anyone who has above mentioned version has got a backdoor in to their wordpress files.

    I found out when scanned my computer with symantec scanner (security.symantec.com) (read more about it here). Which later I verified with wordpress.org announcment (here)

    Make sure you upgrade immediately.
     
    dshah, May 4, 2007 IP
  2. imnotadoctor

    imnotadoctor Well-Known Member

    Messages:
    415
    Likes Received:
    10
    Best Answers:
    0
    Trophy Points:
    140
    #2
    Here we go again!
     
    imnotadoctor, May 4, 2007 IP
  3. ThreeGuineaWatch

    ThreeGuineaWatch Well-Known Member

    Messages:
    1,489
    Likes Received:
    69
    Best Answers:
    0
    Trophy Points:
    140
    #3
    It almost as unbelievable that you've only just heard about it. ;) I realise your intentions are highly commendable, but if you had read the links you included you may have noticed it is an 8 week old "news" story. :D
     
    ThreeGuineaWatch, May 4, 2007 IP
  4. yogesh sarkar

    yogesh sarkar Well-Known Member

    Messages:
    1,740
    Likes Received:
    75
    Best Answers:
    0
    Trophy Points:
    140
    #4
    Old news, but should help those who haven't yet upgraded wordpress
     
    yogesh sarkar, May 4, 2007 IP
  5. dshah

    dshah Well-Known Member

    Messages:
    1,840
    Likes Received:
    69
    Best Answers:
    0
    Trophy Points:
    115
    #5
    aaah, silly me. Didn't notice the date. But hey its news for me :). I scanned my laptop today and was hit by this. Its scary to see wordpress.org could be cracked.
     
    dshah, May 4, 2007 IP
  6. darksat

    darksat Guest

    Messages:
    1,239
    Likes Received:
    16
    Best Answers:
    0
    Trophy Points:
    0
    #6
    The exploit code is fairly simple as well.
    Not exactly a hard crack to implement, and thats whats worrying.
     
    darksat, May 13, 2007 IP
  7. randomIntellections

    randomIntellections Well-Known Member

    Messages:
    985
    Likes Received:
    13
    Best Answers:
    0
    Trophy Points:
    180
    #7
    its not cracking but exploiting :)
     
    randomIntellections, May 13, 2007 IP