Before October going to an end, more good news to come after the Apple Leopard launch!. Great job BlogRush development team members!
At last, BlogRush dashboard is back to usual operation, in fact it came back with more funk reporting. Check out some nice graphs below.
If you haven’t got BlogRush account yet, get it now and boost your website traffic!
If you are running Wordpress below version 2.1.2, patch it immediately, it leads to SQL Injection Vulnerabilities. Here is my test before patch.
wp-injection.pl http://www.takizo.com/blog/xmlrpc.php xxxxx xxxxx 10
The usage is correct
[*] Trying Host http://www.takizo.com/blog/xmlrpc.php …
[+] The xmlrpc server seems to be working
——————–
Username for id = 1 is:–> 3
AN
Md5 hash for user: 3
AN
is: 3
AND post_id = 10 union al
——————–
Username for id = 2 is:–> 3
AN
Md5 hash for user: 3
AN
is: 3
AND post_id = 10 union al
Of course there are more I didn’t show la, just patch it! If you are lazy, this fellow can help you do it for free.
Wordpress SVN was hacked, if you upgraded to Wordpress 2.1.1 for the past few days, please upgrade to 2.1.2 immediately, hackers/crackers might gained access to your blog/server by now.
Message from Photo Matt
Long story short: If you downloaded WordPress 2.1.1 within the past 3-4 days, your files may include a security exploit that was added by a cracker, and you should upgrade all of your files to 2.1.2 immediately.
Longer explanation: This morning we received a note to our security mailing address about unusual and highly exploitable code in WordPress. The issue was investigated, and it appeared that the 2.1.1 download had been modified from its original code. We took the website down immediately to investigate what happened.
Which blog are you running? Word Press? Yes, people who running Word Press, there is a latest release. Usually, new release fix some bugs and security loophole, and please upgrade your Word Press 
Happy Blogging.
View takizo's profile