Wordpress 3.0.3 - Security Privilege Escalation Attack

cd34 · 2010-12-08, 04:42 PM

Requires that you have enabled remote publishing:

http://wordpress.org/news/2010/12/wordpress-3-0-3/

This release fixes issues in the remote publishing interface, which under certain circumstances allowed Author- and Contributor-level users to improperly edit, publish, or delete posts.

These issues only affect sites that have remote publishing enabled.

Remote publishing is disabled by default, but you may have enabled it to use a remote publishing client such as one of the WordPress mobile apps. You can check these settings on the “Settings → Writing” screen.

2010-12-08, 04:42 PM	#1
cd34 a.k.a. Sparky Join Date: Sep 2004 Location: West Palm Beach, FL, USA Posts: 2,396	Wordpress 3.0.3 - Security Privilege Escalation Attack Requires that you have enabled remote publishing: http://wordpress.org/news/2010/12/wordpress-3-0-3/ This release fixes issues in the remote publishing interface, which under certain circumstances allowed Author- and Contributor-level users to improperly edit, publish, or delete posts. These issues only affect sites that have remote publishing enabled. Remote publishing is disabled by default, but you may have enabled it to use a remote publishing client such as one of the WordPress mobile apps. You can check these settings on the “Settings → Writing” screen. __________________ SnapReplay.com a different way to share photos - iPhone & Android