"PHP Blogging Apps Open to XML-RPC Exploits"

Fear and panic!

This article explicitly mentions WordPress as being vulnerable to a newly discovered security hole in the underlying PHP XML-RPC libraries.

This WordPress support article outlines a couple of fixes.

  • Uprade to WordPress 1.5.1.3
  • Or, if you own the server (as I do):
    • pear clear-cache
    • pear upgrade XML_RPC

And all is now right with the world.

via: Daring Fireball

Add Your Comments

Disclaimer
Your email is never published nor shared.
Required
Required
Tips

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <ol> <ul> <li> <strong>

Ready?