WordPress Security Update

blogging Add comments

Just to give a quick update to fellow bloggers hosting wordpress blog software, an urgent security update has been released for blogs that have registration enabled.

The security update patches a vunerability in the XML-RPC implementation which though specially crafted requests users can gain editorial rights on posts across the blog.

WordPress 2.3.3 has now been released without the aforementioned vulnerability, and also provides fixes for a number of other bugs. If users want to keep their older version of wordpress they can download the only the fixed version of xmlrpc.php from wordpress which will remove the flaw.


Leave a Reply

Shopping Directory | Online Security