Comments on: WordPress 2.5 Secret_Key Vulnerability

By: Upgrade wordpress and define the secret key | I'm Knight

Upgrade wordpress and define the secret key | I'm Knight — Sun, 04 May 2008 14:31:46 +0000

[...] you can’t just simply add anything , BlogSecurity remind you that it need to something totally random. What you can do is make use of secret key generator by the wordpress team, it will generate a [...]

By: rolfs.no: Experiencing weblogging

rolfs.no: Experiencing weblogging — Tue, 29 Apr 2008 20:14:39 +0000

WP 2.5.1: Secure Cookies in Wordpress with SECRET_KEY parameter in config settings…

José Carlos Nieto Jarquín reported a vulnerability WP 2.5:
He published an advisory on SecurityFocus on 15 Apr 2008 regarding insecurity regarding the default SECRET_KEY configuration value. You could gain access to any account if you know the defaul…

By: Vulnerabilidad de Integridad de Cookies en WordPress 2.5 | Ayuda WordPress

Vulnerabilidad de Integridad de Cookies en WordPress 2.5 | Ayuda WordPress — Sun, 27 Apr 2008 22:46:32 +0000

[...] Gracias | Blogsecurity [...]

By: BlogSecurity » Blog Archive » Wordpress 2.5 Cookie Integrity Protection Vulnerability

Sun, 27 Apr 2008 19:13:47 +0000

[...] note this vulnerability is different to http://blogsecurity.net/wordpress/wordpress-25-secret_key-vulnerability/ Enjoy the article? Please take a second to: Digg it! | StumbleUpon it! [...]

By: Imran Khalid

Imran Khalid — Sat, 26 Apr 2008 12:58:35 +0000

You shared a very good and important security issue with us…. Very Thanks to you :)

By: WordPress 2.5.1 is Available | PinoyTux Weblog

WordPress 2.5.1 is Available | PinoyTux Weblog — Fri, 25 Apr 2008 21:23:29 +0000

[...] has also a link for the Secret Key vulnerability in WordPress 2.5 which gives you a random string for your SECRET_KEY entry in [...]

By: Ken Nickless

Ken Nickless — Fri, 25 Apr 2008 05:06:38 +0000

Thanks for the update.I’ll change my three version 2.5 wordpress blogs straight away.

By: Johnboy

Johnboy — Sun, 20 Apr 2008 22:39:51 +0000

heh heh Another one?

By: La clé secrète (Secret Key, clé privée) de Wordpress 2.5 at Site Creation

La clé secrète (Secret Key, clé privée) de Wordpress 2.5 at Site Creation — Fri, 18 Apr 2008 17:20:34 +0000

[...] WordPress 2.5 Secret_Key Vulnerability [...]

By: Ultime dal fronte WordPress 16-2008: Sicurezza ed altro

Ultime dal fronte WordPress 16-2008: Sicurezza ed altro — Thu, 17 Apr 2008 17:51:49 +0000

[...] vulnerabilità di WordPress 2.5, scoperta e riportata su SecurityFocus, leggete l’articolo WordPress 2.5 Secret_Key Vulnerability. Questa falla riguarda solo alcune installazioni di WordPress per motivi che vengono spiegati [...]