WordPress.org

Ready to get started?Download WordPress

Forums

Password Exploit in 3.01 (2 posts)

  1. GregF
    Member
    Posted 3 years ago #

    A site that I manage was hacked a few days ago, apparently using a password exploit. I found an entry in the web server logs showing a POST request for /wp-login.php?action=lostpassword, that I'm sure was unauthorized.

    I am running 3.01 and, although the theme is old, all plugins are up to date. Does anyone know if there is a current password exploit and how it can be prevented?

    Thanks.

  2. Samuel B
    moderator
    Posted 3 years ago #

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.