If you've upgraded to WordPress 2.1.1 recently (i.e., between Feb 25 and March 3, 2007), please upgrade to version 2.1.2 immediately. And if you're groaning at the thought of having to upgrade all those WP blogs, here's a shortcut.

According to DreamhostStatus.com, you can add these lines to your .htaccess file:

<Files theme.php>
order allow,deny
deny from all
</Files>

<Files feed.php>
order allow,deny
deny from all
</Files>

That's probably just a stopgap measure. It would be better to do the upgrade, because it appears someone managed to insert some code in the downloadable WP 2.1.1 package. Who knows what else may have been inserted, right?

Adjust your htaccess files right away, then upgrade your WP-powered sites.

(Shoutout goes to Houston rhinoplasty out here on the web.)

Free Download: Get targeted traffic to work for YOU right NOW. Guaranteed.

Finally revealed - How to Get a FLOOD of Targeted Visitors To Your Site Daily.

Download your free ebook today at http://morevisitors.com-review.org

"Security Alert: Upgrade to WordPress 2.1.2"
First Posted: March 3, 2007 | Filed in: Wordpress

Comments Off