Upgrade Wordpress 2.3.2 securities fixes » By Noah Ark

Log in
Registration Closed
Increase Font
Change Theme
Toggle Sidebar

- url
  December 30th, 2007
  Upgrade Wordpress 2.3.2 Upgrade Wordpress 2.3.2
  - By
    Noah Ark
  - . Filed under WordPress & vulnerability.
  - 3
  I just upgrade today, WordPress 2.3.2, fixed a nasty vulnerability. I haven’t did any test yet but according to “blackhat domainer” you can view WordPress Draft Entry via simple URL parameters without log in (un-authorize view).
  
  WordPress developer had to release this ’securities’ fixes before the upcoming 2.4. You could either wait for 2.4 (the milestone is almost ready?) or upgrade immediately. But before others exploit this vulnerability its better to upgrade.
  
  Peter Westwood’s sum up all wordpress 2.3.2 recent change and update in details. Read it first before you decide to upgrade.
  
  External Links
  - How to know today what ShoeMoney is going to post tomorrow
  - Wordpress 2.3.2 Announcements (dev blog)
  Bookmarks
  - Share This
  - Last Update: December 30, 2007 at 11:50 am
  - Tags: 2.3.2, vulnerability, WordPress
- How to Block Google Wireless Transcoder (GWT Proxy) from Indexing your Website
- Bribing Google’s Matt Cutts at Pubcon 2007
- About this entry
  
  You’re currently reading “Upgrade Wordpress 2.3.2”, an entry on Kakkoi.
  
  This entry was posted 4 months, 2 weeks ago on Sunday, December 30th, 2007 at 11:36 am.
  
  You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
  
  Translate
- Advertisements
- Technorati Tags
  2.3.2
  
  ,
  vulnerability
  
  ,
  WordPress
  
  , +favorites.

2 Responses to “Upgrade Wordpress 2.3.2”

- Keith
- RE: Upgrade Wordpress 2.3.2
  
  4 months, 2 weeks ago on December 31st, 2007 at 3:02 am 3 url · microId
  
  1
  Version 2.4 isn't scheduled until late January (and these things rarely come out until after the due date), so it's best to upgrade and not give crackers a month to exploit the bug. I always use XML-RPC to post entries personally, but not exposing draft posts to unauthorized users is probably a must for most WordPress users. Oh yeah, and about your disclaimer at the bottom of the page, don't I just feel special :)
- Noah Ark
- RE: Upgrade Wordpress 2.3.2
  
  4 months, 1 week ago on January 4th, 2008 at 8:14 am 3 url · microId
  
  2
  Thanks Keith, yes i agree. Security issues should be patched immediately. Anyway, it seem like there wil be no Wordpress 2.4 as it was schedules to be release on december 2007. The roadmap is now change to 2.5.
  p/s: The notice is bundle with this theme I dont lnow out how to hide it yet.
- AdSense
- RE: Upgrade Wordpress 2.3.2 - 'Advertisement' ↓
  
  4 months, 2 weeks ago on Sunday, December 30th, 2007 at 11:36 am 5 url
  
  3

Have your say

Disclaimer: For any content that you post, you hereby grant to Kakkoi the royalty-free, irrevocable, perpetual, exclusive and fully sublicensable license to use, reproduce, modify, adapt, publish, translate, create derivative works from, distribute, perform and display such content in whole or in part, world-wide and to incorporate it in other works, in any form, media or technology now known or later developed. Some rights reserved.

Kakkoi

Upgrade Wordpress 2.3.2 Upgrade Wordpress 2.3.2

External Links

Bookmarks

About this entry

Advertisements

Technorati Tags

2 Responses to “Upgrade Wordpress 2.3.2”

Have your say

Taxonomy

Blogroll