WordPress 2.6.2 Release

Posted on September 9, 2008, 10:53 pm, by Adam Sundana.

Hari ini WordPress 2.6.2 sudah Realese, seperti biasa upgrade guna menutupi celah yang masih bolong. berikut kutipan yang saya ambil dari sini.

If you allow open registration on your blog, you should definitely upgrade.  With open registration enabled, it is possible in WordPress versions 2.6.1 and earlier to craft a username such that it will allow resetting another user’s password to a randomly generated password.  The randomly generated password is not disclosed to the attacker, so this problem by itself is annoying but not a security exploit.  However, this attack coupled with a weakness in the random number seeding in mt_rand() could be used to predict the randomly generated password.

Jadi untuk para pengguna wordpress dan masih menggunakan versi 2.6.1 silahkan upgrade dengan senang hati :)


Tags:
Posted under: Internet Comment (RSS)  |  Trackback
« Older:
Newer: »
  • http://digitalmbul.com Rio

    sedang dilakukan pak..pagi2..menunggu nyonya kelar dandan..kita kelarin 2.6.2 nya dulu..kekekekekekekkkkk

  • http://digitalmbul.com Rio

    ealaahhh…

    Error: It was not possible to retrieve the remote file http://wordpress.org/latest.zip. If the status code is 404, then you might have selected a non-existing WordPress version. Another likely reason is that remote file access was disabled by the server admin. In this case, please download the desired file from the WordPress website and put it into the directory /home/digitalm/public_html/blogs/wp-content/plugins/instantupgrade/work/ (make sure the file is server-writable).

    The upgrade process has been aborted, no modifications to your files or databases were applied.

  • http://ayaelectro.wordpress.com/ ayaelectro

    thanks buat info nya…tapi, saya ini tipe orang malas upgrade…haha. yang langsung2 aja lah….hyaha

    ayaelectros last blog post..Pembatasan Lagu Indonesia di Malaysia

  • http://idy-arief.com oyip

    dams…diupgradin dunks webblog gw…xixixixi…

    oyips last blog post..the twin-first usg

  • http://www.caplang.net edy

    yak, udah apgret juga dong :D

  • http://tumpufajar.blogspot.com tumpu

    wordpress emang ada programnya gitu??? bukannya bisa kerja lewat webnya aja?? hehe. gaptek[dot]com

    tumpus last blog post..The Face(lift) of Prambanan

  • http://adams.web.id/ Adam Sundana WeBlog

    jiakakakakaka…
    nyonya sih udah kelar dandan tapi wordpress belom kan…
    nah sekarang coba sambil ngopi :D