About 14 hours ago WordPress.orggave a notice that warns that version WordPress 2.1.1 available to download on their server 3-4 last days has files that contain a exploit. From what they say the cracker was a person with access to the server wordpress.org, it `s allowing to modify two files. Cracker who was now irrelevant. It is important that all who have downloaded and installed WP. 2.1.1 in recent days to make urgent upgrade.
I do not want to think about how bloggers must make urgent upgrade 2.1.2 the new version.
If you downloaded WordPress 2.1.1 3-4 Within the past days, your files may include a security exploit That was added by a cracker, and you SHOULD upgrade all of your files to 2.1.2 immediately.
If your blog is running 2.1.1, please upgrade Immediately and do a full overwrite of your old files, Thos Especially in wp-includes. Check out your friends blogs and if any of Them Them is running 2.1.1 drop a note and, if you can, pitch in and help with the upgrade Them.
If you are a web host or network administrator, block access to "theme.php"And"feed.php", And any query string with" ix = 'or' hint = "in it. If you're a customer at a web host, you may want to send a note to Let Them Them know about this release and the above information.