News Feed
Sections
News Archive


Community Events






feed this:

Developer Tutorials Blog:
Hacking Wordpress When You've Forgotten Your Password
0 comments :: posted Thursday May 22, 2008 @ 12:58:57
voice your opinion now!
BY CHRIS CORNUTT

The Developer Tutorials blog has an article posted today about how you can "hack" your WordPress installation if you happen to forget the password for your account:

Do you have multiple Wordpress self-hosted blogs? If so, you've likely run into a scenario where you just can’t remember your password. With Wordpress 2.5 and 2.5.1 there’s an annoying bug that sometimes generates passwords that don't work when you click the "Forgot Password" option. [...] Wordpress resets the password internally (in the MySQL database) but the link that it sent you to activate that password fails to connect with the database effectively locking you out of your blog. In this scenario, at least for me, all the potentially viable solutions lead to dead ends.

His six step process involves an external script (use with caution, especially before you read the source) that reaches into your WordPress install and updates your admin account and sends out an email with the resulting password.

tagged with: wordpress hack forgot password villageidiot script tool


CyberInsecure.com:
Half-Million Sites Mostly Running PHPBB Forum Software Hacked In Latest Attack
0 comments :: posted Tuesday May 13, 2008 @ 14:04:38
voice your opinion now!
BY CHRIS CORNUTT

According to the CyberInsecure.com website around a half-million websites running PHPBB were hacked in a large coordinated effort.

More than half a million websites have been compromised in a new round of attacks that hacked domains in order to infect unsuspecting users' PCs with a variety of trojans. This ongoing campaign includes new malware hosting domains and new trojans variations. All of the sites are running older or misconfigured versions of "phpBB," an open-source message forum manager. Open-source popular applications like phpBB tend to be often targeted by mass scanning and exploiting tools.

The hack redirected visitors through several steps ultimately ending up on a page that tried to take advantage of errors in older Internet Explorer and RealPlayer versions. The article talks about exactly which viruses could have caused the problems and the wide range of sites (both in topic and location) that were effected.

The best way to protect you and your PHPBB install from something like this happening is to get the latest version of the software and learn how to configure it correctly.

tagged with: phpbb forum software attack hack redirect vulnerability


mysql cakephp security pecl zend application zendframework developer PHP5 package PEAR code ajax job book framework conference release database releases

All content copyright, 2008 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework