Today I found my permalinks were all screwed up, and guess what I found another admin popped up from who knows where. Was easy enough to fix once I found this article, http://www.journeyetc.com/2009/09/04/wordpress-permalink-rss-problems/.

I’ve been looking around the net to try and find the actual exploit (milw0rm, packetstorm etc.) haven’t been able to find it. I’m guessing it’s private still. Hopefully wordpress fixes this issue soon because from what I’ve read all versions of wordpress are vulnerable right now.

That of course can’t be good can it? Regardless, I’ve went through and upgraded everything possible including plugins, wordpress, and I upgraded some things on my server.In the mean time I’m going to look around for anything else that was messed with and change some things

Anyone else hit with this?

UPDATE: Seems like there was some confusion about which versions of WordPress are effected, it seems you’re safe so long as you’re running 2.8.4. When my blog was attacked, I was running WP 2.8.3. Usually I update right away, this time I didn’t. That’s what I get for slacking off

Related?

• Switching to permalinks

Tags: exploit, hack, permalinks, wordpress

This entry was posted on Friday, September 4th, 2009 at 11:20 pm and is filed under Insanity. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.