Home » Critical! » Critical WordPress Exploit in Version 2.1.3

Fundamental Website Setup Links

Read/Watch The Tutorials: Setup Tutorials
Download Wordpress
Get A Theme:
Comicpress
Theme Database
Get AWSOM Plugins:
AWSOM PixGallery 4.8.0
AWSOM News Announcement 1.6.0
AWSOM Archive 1.4.3
AWSOM Uninstaller 1.0.4
Search For New Plugins:
Plugin Codex
WP-Plugins.net
Get AWSOM Support: Plugin FAQs

Critical WordPress Exploit in Version 2.1.3

By in Critical!, Website Administration on .

A critical exploit has been discovered in WordPress 2.1.3 related to the way WordPress admin cookies are accessed. A malicious user could possibly steal your admin password cookie and gain admin rights to your website. This is only an issue if you are using the default WordPress prefix of wp_ or are using an easy to figure out prefix. Unfortunately the only fix currently available is to upgrade to WordPress 2.2–which has it’s own set of major issues due to the widget changes and other new coding conventions introduced in that version.

I wish I could provide an easy fix, but there isn’t one. If you have a WordPress 2.1.3 site with a standard setting for the prefix (in the wp-config.php file) then you really should think about upgrading–do research on the upgrade though, its not very straightforward.

People Using AWSOM Ideas

Onezumiverse.com Frankenshoe.com Macnightowl.com Digitaldancer.info Chimericfire.com Scaredpoet.com Reconnaissanceart.com WorkingAuthor.com StudentBerry.com Ecologicliving.ca Neverendingbooks.org/ Mundos Roleros BrokenReploid.com NosillaCast
Rogue Festival 2008
Bright Red Technologies Tax Center
Celebrity-Fashion.net
FM 105.1
TanoJewelry.com

Get Added To The List

Support Open Source Software

Hi, Thank you for coming to AWSOM.org. We appreciate you visiting and hope you can support us in our efforts with free and open source software.
AWSOM Powered