Schulz Consulting

Consulting and Upgrades

  • Home
  • Services
  • Contact

WordPress password reset flaw patched in 2.8.4

August 12, 2009 by Wayne Schulz

wordpress.jpg

Yesterday my friend Robert Wood reset the administrative password on my site. Rather than be upset – I’m delighted. Robert was notifying me of a flaw in the WordPress software that allowed anyone to reset the administrative password of a blog.

While this did not provide access to the administrative account (the password reset was only sent out via email to the registered account holder) – it did expose a weakness. If someone also had access to the email account affiliated with the administrator they could potentially hijack this password reset and gain access to your WordPress site.

Version 2.8.4 of WordPress is available and I recommend you upgrade immediately.

WordPress via Robert Wood- DDF Consulting – Florida MAS 90 Consultant

Filed Under: Technology Tagged With: administrator, ddf consulting, florida, password, robert wood, security, Wayne Schulz, wordpress

Access Sage 100 in the cloud today. 3rd party applications supported Available 24/7 from anywhere. Dedicated hosts

Call 1-888-244-6559 (toll-free)

Search Our Site

Sage 100 Newsletter

Sage 100 News

  • Does Sage have plans to stop supporting TLS 1.0 & 1.1 for Sage 100?
  • Payroll Requirements for Year-End 2023
  • DataSelf ETL+ v2023.07 for Sage 100 Announced
  • Version History of Sage 100 Accounting Software
  • What Happens if Sage 100 Goes Read-Only?
  • Sage 100 Knowledgebase Updated
  • Top Sage 100 New Features – Versions 4.4 through 2023
  • The Wayfair Ruling at Five: Why 72% of Businesses Still Struggle with Economic Nexus
  • AVALARA UPDATE: Sales Tax Holiday Changes in Florida
  • Sage 100 & CRM – May 2023 Update

Contact Us

Schulz Consulting
Connecticut Office
Click Here To Contact Schulz Consulting
Phone: 860-657-8544
Email Us
Available remotely nationwide.
We are a local branch of DSD Business Systems Connecticut.

Copyright © 2023 · Parallax Pro Theme on Genesis Framework · WordPress · Log in