Comments on: WordPress 2.5 Admin Login SQL Injection Rumour

By: Wordpress Secure Login

Wordpress Secure Login — Sat, 03 Jan 2009 16:53:37 +0000

You can use wordpress stealth login like this tutorial http://xtremenitro.org/2008/12/29/stealth-login-secure-your-wordpress-login.html

By: MJ

MJ — Sat, 31 May 2008 20:33:27 +0000

Backing up my data 6 times a day has saved my bacon.

My last move was to change the table prefix of my database, drop and re-import my data.

I like to understand more about where the holes are. Is it the Wordpress code or the MySql database.

By: DK

DK — Sat, 31 May 2008 20:00:54 +0000

MJ, hopefully our new scanner project will help in situations like this where the vulnerability may be non-blog related.

I’d suggest backing up your data and then re-installing it.

By: MJ

MJ — Wed, 28 May 2008 22:01:06 +0000

I have been hacked almost daily. I have 2.5.1 plus all the hardening suggestions, but some hacker is still able to inject my wp_options and wp_users.

Help WOrdpress!

By: Cómo hacer tu blog un poco más seguro » blogpocket 7.0

Cómo hacer tu blog un poco más seguro » blogpocket 7.0 — Sat, 19 Apr 2008 23:19:26 +0000

[...] Matthew Mullenweg en su blog, la versión 2.5 de WordPress no contiene vulnerabilidades, al hilo de un posible fallo de seguridad. En cualquier caso, el bueno de Matt nos aconseja adoptar tres medidas básicas para evitar [...]

By: El Boletín de Seguridad de WordPress 2.5 era Falso | Ayuda WordPress

El Boletín de Seguridad de WordPress 2.5 era Falso | Ayuda WordPress — Tue, 15 Apr 2008 22:06:09 +0000

[...] rumor malintencionado el pretendido informe de una posible vulnerabilidad de inyección SQL en la pantalla de login de WordPress 2.5. O eso es lo que ha dicho Matt, con profusión de detalles, en su [...]

By: Faille de sécurité dans Wordpress 2.5, une rumeur ? at Site Creation

Faille de sécurité dans Wordpress 2.5, une rumeur ? at Site Creation — Tue, 15 Apr 2008 11:02:04 +0000

[...] quelques jours, une rumeur traîne sur une faille de sécurité dans la dernière version de Wordpress 2.5. Rumeur [...]

By: brandiboyd.com » Blog Featured » Please… just grant me this little break…

Tue, 15 Apr 2008 03:12:48 +0000

[...] on track with my precarious budget. And with resign, at the end of such a day I read about the rumors of a sql injection attack on the wordpress admin login . Damnit. I really, REALLY need to sleep. And see the sun before summer hits. But as it [...]

By: spostareduro

spostareduro — Tue, 15 Apr 2008 00:33:03 +0000

thanks for responding..:-)

By: DK

DK — Mon, 14 Apr 2008 20:33:54 +0000

spostareduro, an SQL Injection issue has been found in 2.5. The details have not yet been published.