Wordpress 2.3.3 Security Flaws

WordPress 2.3.3 – Security Flaw

Posted on February 6, 2008 by Zubair

Hello there! If you are new here, you might want to subscribe to the RSS feed for updates on this topic.

So there’s a new wordpress upgrade available? But this is just a security fix, a flaw was found in the XML-RPC implementation that would allow users to edit other peoples post/comment this is bad for those who allow registration on their blog. There is only this security fix to be noted other-wise you can download the complete package of wordpress and upgrade it to version 2.3.3.

Please note that version 2.3.3 also fixes some other minor bugs. You can have a look at that small list by Clicking Here.

There is yet another exploit found, but that is for users using the WP-forum plugin, it is advised by wordpress itself that you stop using that script until the author fixes the exploit.

You can download the XML-RPC Security Fix by Clicking Here. or goto www.wordpress.org to get the complete upgrade if you want that.

You can checkout the complete news about the changes by Clicking Here.

About Zubair

Zubair is a professional freelance Web Designer and Developer, and is also the founder of eBloggy. He has been addicted to the Web since 2000. View all posts by Zubair →

So, Did you like it?

Did you find this post useful? Why not Subscribe to the post comments feed or Subscribe to the Blog Feed to receive new article updates like this regularly.If you want you can also Leave a Trackback.

← Microsoft to acquire Yahoo!

Windows Folder Options missing – Windows XP →

3 Comments to WordPress 2.3.3 – Security Flaw

Cialisel says:
July 17, 2008 at 1:56 am
Nice Blog. Good Look!
Reply #3
unTECHy says:
March 13, 2008 at 9:26 am
I upgraded. Not for the security updat really, but for the tag support. Great post though. Didn’t know about the WP-Forum flaw, thanks.
Reply #2
Aaron Peters says:
February 11, 2008 at 5:28 pm
Hi,
I just stumbled upon this blog post.
Will definitely check this out.
txs
Aaron
Reply #1