Wordpress 2.1.1 security flaw found and patched
March 2nd, 2007 — dan.linEarlier this week I upgrade the backend to the latest version of Wordpress 2.1.1. Today Wordpress announced that a hacker had inserted a remote PHP execution exploit into the code and recommended everyone to upgrade to yet another version 2.1.2. I guess that’s the risk I take for being an early adopter. The upgrade is minor fairly simple compared to the previous update. Hopefully you are not still running the dangerous version 2.1.1. If you are, go get the new one NOW!!!
April 3rd, 2007 at 2:01 pm
I am often afraid to upgrade because I use a custom theme and extensive hacks. Can I upgrade without having to do everything over?
April 3rd, 2007 at 2:03 pm
I don’t think you can get off that easily if you have version 2.0.x.