Moderator
James Huff
(@macmanx)
Volunteer Moderator
There are no known security issues with v1.5.
*And* until we know it was not just a case of some jerk figuring out the password to his account…
Let’s hope that’s the case. I just saw that Blog CMS was hacked.
This was not a case of WordPress security (not directly, that is):
http://peterbarbosa.com/archives/2557/server-hacked/
“The hacker got into WordPress by accessing a admin account.. I accidently left a WP admin account open.. please do not do this at home.”
What does that mean, “I left a WP admin account open”? Does he mean he had the WP console up on the screen and then wandered away from the computer?
Well, then, unless “he” works in a corp environment the size of MS/Redmond, he ought to by goddess KNOW who hacked him, right? Or at least the 2 or 3 most likely snarkers.
If you followed the link I placed above, you’d read this:
“…just to let the hacker I know, I have the IP address, and I will be contacting the ISP for the damage they have done.”
So it’s unlikely the culprit wandered by Peter’s desk during lunch.
just kinda curious why is this late February stuff rearing it’s ugly head today?
Tried, kafka, but timed out….
dawg: Scroll up to pezastic’s note about BlogCMS. I imagine after hearing that, he went a-searchin’ and stumbled over this thread.
Yeah I did go back and see who brought it up! Thanks
You got it. After reading about BlogCMS, I wondered if WP had any problems of its own. I can see now that it’s A-OK!
with regards to BlogCMS it was punBB that was hacked rather than BlogCMS itself. Personally I think BlogCMS is a piece of crap, but it looks moderately good out of the box, it’s when you start playing with it reality dawns quickly. punBB was updated and the problem was resolved.