JaypeeOnline

WordPress 2.8.4 Security Release

Tuesday, August 11, 2009

Another heads up for all WordPress users. The WordPress dev team just released another security update WordPress 2.8.4 to fix a vulnerability discovered yesterday. Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As [...]

Worpress.com Stats Plugin Vulnerability

Saturday, July 28, 2007

2 Comments

This is an update to my recent post WordPress.com Stats Plugin Upgrade. Andy Skelton, one of the plugin developer’s talks about it in his blog: Anyone hosting their own blog and running the WordPress.com Stats plugin should update the plugin to version 1.1.1 immediately or apply the patch below. A critical SQL injection vulnerability was [...]

iPhone Exploits Discovered

Tuesday, July 24, 2007

1 Comment

Researchers for Independent Security Evaluators have discovered two security vulnerabilities in the Apple iPhone. The vulnerabilities are found in the Safari browser through a method called “fuzzing”. The first exploit requires the user to surf a maliciously coded website using the Safari browser. As soon as the user gets there, all tje data inside the [...]