WordPress Blog – WordPress 2.1.1 dangerous, Upgrade to 2.1.2
This morning we received a note to our security mailing address about unusual and highly exploitable code in WordPress. The issue was investigated, and it appeared that the 2.1.1 download had been modified from its original code. We took the website down immediately to investigate what happened.
[Posted via wordpress.org]
This is a very critical update. If you run a WordPress 2.1.x site, you need to update a.s.a.p. — no if, ands or buts. Fortunately, I wasn’t bit by the security breach, however, I did find error logs in my web directory that showed me some kind of nefarious behavior was going on.
Sometimes it’s easy to forget that the web can be a bad, bad place…
Recent Comments