August 11th, 2009 by Keith

WordPress 2.8.4 Released

Posted in Business Software, Development Software, Linux, Mac OS, Site News, Web Apps, Windows

WordPress 2.8.4 has just been released to the public. This version is to patch a vulnerability that was discovered yesterday – a specially crafted URL could be requested that allows an attacker to bypass a security check to verify a user-requested password reset.

As a result, the first account without a key in the database (which is normally the admin), would have its password reset, with the new password emailed to the account owner. Although this does not allow any form of remote access, but it can be quite annoying.

Download File
WordPress 2.8.4

One Response to “WordPress 2.8.4 Released”

  1. Upgrade Site to WordPress 2.8.4 | Secret from a Knight's Journal Says:

    [...] order to avoid such vulnerability on my site, I have upgraded my version to WordPress 2.8.4. It is recommended that you should do the same for yours [...]

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Search

Categories

Translate

  • German Spanish French Italian Japanese Korean Portuguese Chinese

Offers