Wordpress 2.1.1 Release Compromised by Cracker

The recent 2.1.1 release of the popular blog software Wordpress was compromised by a cracker who made it easier for to execute code remotely. This is interesting because the official release was quietly and subtly compromised, and has been in the wild for a few days now. There's no word on if any affected sites have been compromised, but anyone running Wordpress is urged to upgrade to 2.1.2 immediately

http://it.slashdot.org/article.pl?sid=07/03/03/0427211

I'm on my way to upgrading mine :-(

Published Saturday, March 03, 2007 10:12 AM by donna

Comments

Saturday, March 03, 2007 8:56 PM by Ric

# re: Wordpress 2.1.1 Release Compromised by Cracker

Funny, I have been experiencing some very peculiar behaviour at Wordpress for sometime now Donna.  Tim )Hardhead said I should Join cuz I had strange happenings at the old one deigratia.onesite.com.  my Problems was the script or the code checker device at the site! I admit I am not perfect but the checker made some very peculiar changes to my site that I had never suspected.

Also using Opera I would lose some of the post at times.  Firefox the code would duplicate till the end of the page although I just wanted to change the one line to the strong code.

Explorer seven never have been able to sign in to the site, Told Mark about these troubles and seems to think they are my troubles.  Just thought I would place some more insite to Wordpress.

CU

Ric:^D.