3.0.2 and 3.0.3: You do not have sufficient permissions to access this page.

I am having the same issue that you both are describing in addition to others.

When I wish to access edit.php, I am greeted with the message “no posts found”, even though the same page displays that there are 500+ posts.

Lastly, the categories page is empty, though I have hundreds of categories. Interestingly enough, the pagination still exists, showing the correct number of pages for the categories I have, only no categories are listed.

I’m having similar issues. I have two different blogs on my server, one has 3.0.2 and one has 3.0.3 on it, both are having the same issue. I don’t blog a lot, so I’m just now noticing this. I’m not sure how long it’s been this way.

• wp-admin/edit.php — says no posts found, while also showcasing that there are “All (21) | Published (21)”
• wp-admin/edit.php?post_type=page — same issue
• wp-admin/post-new.php — missing important form fields like “publish post” categories, tags, etc, the menu items are not available, “screen options” is also missing here

My two sites are working fine on the front-end, it’s just inside the CMS that these problems are occurring.

Josh, I too am on mediaTemple… hmmmm..

I am experiencing all of these same problems… and I am ALSO on Mediatemple.

I followed up with MT and below is their response. Totally makes sense and I’ll be taking their described steps to harden my sites. Here’s the main link they provided below:

GS:Improve your PHP security
http://wiki.mediatemple.net/w/GS:Improve_your_PHP_security

————
As a courtesy, I ran a scan on your (gs) Grid-Service to find and remove any known malware and payloads that our customers have been infected with recently. The results of this scan can be found in the mt_change.log file located in your home directory, as well as the changelog file located in data/mt_dbclean.

I definitely do see that the infection has spread across several domains as you’ve reported. However, this is most likely due to the infection gaining access to your (gs) Grid-Service through an out-of-date WordPress installation. Unless you enable open_basedir restrictions to secure PHP on your (gs) Grid-Service a bit further, it will be possible for these infections to spread across all domains. This is why you saw the infection on static HTML sites. That being said, enabling open_basedir restrictions would provide you with added security. This would essentially isolate your domains from each other, which would prevent the infection from spreading.

GS:Improve your PHP security
http://wiki.mediatemple.net/w/GS:Improve_your_PHP_security

The out-of-date WordPress installation that I’m seeing is for the domain xxxxxxx.com. You will want to update this, as well as other CMS installations that you have on your (gs) Grid-Service, to the latest version. Currently, the latest version of WordPress is 3.0.3. The latest releases, according to WordPress/Codex, are mandatory updates. This is due to the nature of the update, which was done as a security patch for exploits that were made known.

Please do keep in mind that we are happy to help you set up everything regarding our servers, and will often go the extra mile to help you set up third-party software to access our servers correctly; however, we are not responsible for the configuration or malfunctions of third-party software.

You may also consult the “Scope of Support” page for more details regarding the scope and amount of support covered by (mt) Media Temple for this and/or other specific products. Please visit the following URL for more information: http://www.mediatemple.net/go/sos/.

Let me know if there’s anything else I can answer for you regarding your (mt) Media Temple services.

Best regards,

And this makes, what? The third time in the last year MT has had hacks like this???