Wordpress 2.1.1 Release Compromised by Cracker

Posted by Zonk on Friday March 2, 2007 @06:34PM from the not-my-emo-comments-and-angsty-statements dept.

GrumpySimon writes "The recent 2.1.1 release of the popular blog software Wordpress was compromised by a cracker who made it easier for to execute code remotely. This is interesting because the official release was quietly and subtly compromised, and has been in the wild for a few days now. There's no word on if any affected sites have been compromised, but anyone running Wordpress is urged to upgrade to 2.1.2 immediately, and admins can check their logs for access to 'theme.php' or 'feed.php', and query strings with 'ix=' or 'iz=' in them."

2 of 48 comments (clear)

Min score:

Reason:

Sort:

Re:Damn crazy crackahs. by User+956 · 2007-03-02 19:10 · Score: 4, Funny

Dem crackahs ALWAYS be gettin' all up in my WordPress yo. Fo'realz!

I thought the politically-correct term for "cracker" was "caucasian-american"?

--
The theory of relativity doesn't work right in Arkansas.
Re:Damn crazy crackahs. by PietjeJantje · 2007-03-02 20:45 · Score: 2, Funny

What about this arrangement: let us all agree here to call hackers crackers from now on, and don't tell the media. This should fix things and create a clear divide again. Now excuse me while I'm off cracking some new code.