Blog程序WordPress v2.03及以下版本存在严重安全漏洞



如果你在用Wordpress的话,建议立即在option菜单中禁用“Anyone Can Register”选项。



Leaving it open and letting people sign-up for guest accounts on your WordPress blog could lead to incredibly nasty stuff happening if anybody so desired. And trust me I am not exaggerating this. So don’t wait a second to disable this option and please relay the message.

WordPress dev team has been notified a while back and I dare hope they will soon start acting on it, if only by relaying a similar announcement through the official channel (as well as, of course, releasing a proper patch).

消息来源:Dr Dave