Password Exploit in 3.01 (2 posts)

  1. Greg Falken
    Posted 6 years ago #

    A site that I manage was hacked a few days ago, apparently using a password exploit. I found an entry in the web server logs showing a POST request for /wp-login.php?action=lostpassword, that I'm sure was unauthorized.

    I am running 3.01 and, although the theme is old, all plugins are up to date. Does anyone know if there is a current password exploit and how it can be prevented?


  2. Samuel B

    Posted 6 years ago #

Topic Closed

This topic has been closed to new replies.

About this Topic


No tags yet.