[wp-trac] [WordPress Trac] #11104: 2.8.5 Injection Exploit

WordPress Trac wp-trac at lists.automattic.com
Tue Nov 10 15:50:34 UTC 2009


#11104: 2.8.5 Injection Exploit
--------------------------+-------------------------------------------------
 Reporter:  bradyk        |       Owner:  ryan                                   
     Type:  defect (bug)  |      Status:  new                                    
 Priority:  normal        |   Milestone:  Unassigned                             
Component:  Security      |     Version:  2.8.5                                  
 Severity:  blocker       |    Keywords:  exploit, injection, hack, malware, porn
--------------------------+-------------------------------------------------
Changes (by g30rg3x):

  * priority:  highest omg bbq => normal


Comment:

 I have found the same log lately (POST /wp-admin/upload.php) from
 different sources in many of my wordpress-based sites but as of the moment
 no security issues like this one has been encountered...[[BR]]
 I seriously doubt from the pointed evidence that is a WP issue, seems more
 like a server security problem itself.[[BR]]
 As of the moment seems to be a MediaTemple customers-only issue...

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/11104#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list