Open source blog, linux, php, python, security » exploit http://www.alonon.net Sat, 04 Feb 2012 07:23:05 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Open source blog, linux, php, python, security http://0.gravatar.com/avatar/5152c5736f5f8dd9570ffb2f9068e8ab.png?s=48 http://www.alonon.net WordPress Security Vulnerability http://www.alonon.net/wordpress-security-vulnerability/ http://www.alonon.net/wordpress-security-vulnerability/#comments Wed, 12 Aug 2009 07:46:55 +0000 ALonon http://www.alonon.net/?p=125 With this security vulnerability, your admin password can be reset if your wordpress version <=2.8.3.  For more information about exploit visit: http://www.milw0rm.com/exploits/9410

Solution:

open wp-login.php

Find this line

if ( empty( $key ) )

and change with this:

if ( empty( $key ) || is_array( $key ) )


or

patch: http://wordpress.org/development/2009/08/2-8-4-security-release/

]]> http://www.alonon.net/wordpress-security-vulnerability/feed/ 1