WordPress 2.8.4 Released to Fix Admin Password Reset Exploit

If you don’t want hackers to reset your passwords better do the upgrade immediately :

Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.

We fixed this problem last night and have been testing the fixes and looking for other problems since then. Version 2.8.4 which fixes all known problems is now available for download and is highly recommended for all users of WordPress.

OOppsss I need to update lots of blog .. Need ty find time for my very busy schedule now adays

Dexter Panganiban https://techathand.net/about-2/

Dexter is a person who loves technology,new gadget, SEO, Social Media and Christianity. Follow him at twitter via @techathand and add him @ Google+ and contact us at admin@techathand.net

You May Also Like

More From Author

10Comments

Add yours

+ Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.