[wp-hackers] Security. Forum post - 2.0.1 has holes

Robert Deaton false.hopes at gmail.com
Fri Mar 3 02:20:53 GMT 2006

On 3/2/06, Sebastian Herp <newsletter at scytheman.net> wrote:
> Podz wrote:
> > Can I suggest a Dev Blog post today that will kill this security crap in
> > the forums, or the release of a fixed up 2.0.2 ?
> >
> > I don't think ignoring this stuff is the best approach.
> Why not? It's a false alarm. I tried it and it only works as admin. Why
> should I hack a blog, when I am already an admin ... big deal!

And the average user who happens to hear about a vulnerabilty posted
on secunia, who has a history of posting serious threats, now thinks
that their install is vulnerable, and now we have countless people
coming on IRC and the forums wondering when there will be a security

--Robert Deaton

More information about the wp-hackers mailing list