Blogging Fool

23 Aug, 2009

Wordpress Encourages Update to Security Patch 2.8.4

Posted by: Blogging Fool In: Blogging Tips| Wordpress

To everyone using a Wordpress custom installation I strongly recommend upgrading to the latest patch version 2.8.4 which not only includes the previous point patches but prevents a malicious hack of the admin backend. Per the official statement from Automattic:

“[A] specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner.”

It is easy to install the update – simply click the upgrade button from your admin backend and confirm that you want to apply the patch. Be sure to backup your database using a plugin like Lester Chan’s excellent WP DB Manager in advance, to be sure.

Read more about the latest Wordpress security fix 2.8.4 at the official Automattic site.

Post to Twitter Tweet This Post Post to Plurk Plurk This Post

  • Share/Bookmark
Tags: , , , , , , , , , , , , , , , ,

No Responses to "Wordpress Encourages Update to Security Patch 2.8.4"

Comment Form

Categories

Archives

Enter your email address:

Delivered by FeedBurner


Blog Directory

blog search directory

Search


About

Blogging Fool has been running internet communities since the days of Lynx, Veronica and gopher but only really understood the heart and soul of blogging as late as 2008. He has been invited to speak about emerging media strategies at conferences across North America.

Sign up for my private newsletter!

Name:
E-mail address:
Blogging Fool
Subscribe

Most Active Commenters

Copyright © 2007 Blogging Fool is proudly powered by WordPress

Fervens - C Theme is created by: Design Disease brought to you by Smashing Magazine

Twitter links powered by Tweet This v1.6.1, a WordPress plugin for Twitter.