WordPress.org

Forums

Has Login Security Vulnerability Been Fixed in 3.0.3? (6 posts)

  1. v2006
    Member
    Posted 4 years ago #

    Hi,

    My website (3.0.3) failed to pass a PCI scan because of security vulnerabilities with the login. Has this been fixed in 3.0.3?

    Thanks

  2. esmi
    Forum Moderator
    Posted 4 years ago #

    Did you contact security@wordpress.org?

  3. v2006
    Member
    Posted 4 years ago #

    No..do they actually respond at that address?

  4. esmi
    Forum Moderator
    Posted 4 years ago #

    I think so, yes.

    I do know that every single email to that address is read and acted on as quickly as possible (if appropriate). The last 2 WP upgrades were the direct result of security concerns being mailed in. All WordPress security issues are treated very seriously. All that is asked is that you do not publish any details of the issue - either here or elsewhere - for obvious reasons.

    Just send them straight to security@wordpress.org

  5. v2006
    Member
    Posted 4 years ago #

    Email sent

    Thanks

  6. esmi
    Forum Moderator
    Posted 4 years ago #

    No problem.

Topic Closed

This topic has been closed to new replies.

About this Topic