Open source blog, linux, php, python, security » exploit http://www.alonon.net Wed, 18 Aug 2010 20:03:38 +0000 en hourly 1 http://wordpress.org/?v=3.0.1 Open source blog, linux, php, python, security http://1.gravatar.com/avatar/5152c5736f5f8dd9570ffb2f9068e8ab?s= http://www.alonon.net WordPress Security Vulnerability http://www.alonon.net/wordpress-security-vulnerability/ http://www.alonon.net/wordpress-security-vulnerability/#comments Wed, 12 Aug 2009 07:46:55 +0000 ALonon http://www.alonon.net/?p=125 Read more ]]> With this security vulnerability, your admin password can be reset if your wordpress version <=2.8.3.  For more information about exploit visit: http://www.milw0rm.com/exploits/9410

Solution:

open wp-login.php

Find this line

if ( empty( $key ) )

and change with this:

if ( empty( $key ) || is_array( $key ) )


or

patch: http://wordpress.org/development/2009/08/2-8-4-security-release/

Tags: , , ,

Related posts

]]> http://www.alonon.net/wordpress-security-vulnerability/feed/ 1