Apparently there is a security hole in WordPress that allows hackers into your hosting account. To secure everything, you need to update to the latest version 2.8.6 of WordPress immediately:
Here is a video from Youtube with a quick explanation followed by the WordPress statement:
“WordPress 2.8.6 Security Release
2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.
The first problem is an XSS vulnerability in Press This discovered by Benjamin Flesch. The second problem, discovered by Dawid Golunski, is an issue with sanitizing uploaded file names that can be exploited in certain Apache configurations. Thanks to Benjamin and Dawid for finding and reporting these.”
Why not do it now! And don’t forget to backup first.
See my previous post – http://dave-whittle.com/internet-marketing/how-to-backup-your-wordpress-blog
Related Posts:
Tagged with: blogs • File Names • Hackers • Internet Marketing • Operating System • Peace Of Mind • Privileges • Security Hole • Security Problem • Security Problems • Security Release • Vulnerability • Wordpress Blog • Youtube
Like this post? Subscribe to my RSS feed and get loads more!
That is scary. Make sure you backup before you do this. I lost all my data on an older blog doing this. Also, it can play havoc on your plugins…but I’m gonna do it now.
I recommenced the plugin WordPress Database Backup.
Hi Evan,
Yes, I personally use the WordPress Database Backup.
I created another gmail account for this and set it to back up daily.
Peace of mind!
Dave
Hi David,
Thanks for the tip. I’ve backed up and upgraded in between reading your post and writing this reply.
Thanks
John
.-= John Tanner´s last blog ..How I Created My First Product – Send2Kunaki.Com =-.
Hi John,
You are welcome.
Losing your blog must be shattering.
Dave