Security Exchange, information security news, computer questions
This entry was posted on Jun 19 2009 by sergio

Wordpress Security Risk – delete the install.php file! Or possible vulnerability

It is well known that there are new versions of a program. The next releases repair some bugs, but very often they create new bugs and vulnerabilities to remote attacks. Anyway it is always (almost always) to have the latest version of a program, for example WordPress.

It is easy for an attacker to understand or read the version of Wordpress you are using. If it is an old version, there are for sure vulnerabilities, and they are well known, many blogs and forums talk about them! But if the versions are the latest, probably the security bugs are unknown, or if they are, the information of the vulnerabilities doesn’t spread too fast and less people know about it.

In the installation of WordPress you need to copy all the files to a root folder of the server, and then you can go to the wp-admin/install.php and start the installation. After you finish the installation it is suggested to delete the install.php file. Many wordpresser delete also the upgrade.php also!

Here is an image of what is shown normally when the attacker goes to the install.php in normal conditions, when there is no error on the database:

alreadyinstalled

It has been found a vulnerability in Wordpress Up to 2.8 (at the time of May 5th 2009) with the install.php file and crashes of the MySQL database. When there is a crash on the database, in the browser is shown an error message which says that there was an error establishing a database connection. In this moment it is possible to go to the install.php and create a new admin and a new password is given!

For more informations about this vulnerability you can go to the forum http://perishablepress.com/press/2009/05/05/important-security-fix-for-wordpress/.

What to do to protect your Wordpress blog… delete the install.php, because it is not needed since you have it already installed. And you can backup the upgrade.php on another folder outside of your wordpress directories, you will put it back temporarily just for the upgrade.

Another very important step is to delete all the readme files, txt and htmls where the version of WordPress can be read from the attacker.

If you have any informations about this issue being resolved on WordPress 2.8 or 2.8 RC1 please comment.
Thanks for reading

Do you have a blog? Let’s exchange our links!

Any question? You need our FAST help? Go to our forum and as for FREE!


Similar posts

, , , , , , , , , , ,
Blogging, Hacking


3 Responses to “Wordpress Security Risk – delete the install.php file! Or possible vulnerability”

  1. Wordpress 2.8 settings - general save button not loading | Security-Exchange News
    10:25 pm on June 19th, 2009

    [...] Do you want to read something more about WordPress vulnerabilities and how to protect? Go here… [...]

  2. Murray
    4:52 am on June 23rd, 2010

    Thanks for the tip. I have been havng problems with my SQL databases crashing and am tringto sort it out with my host. I have noticed a few times that when it crashes it goes to the install screen. I never really thought much about it .. until now!
    I am lucky no one has taken advantage of it! deleting install.php files now!

  3. keylogger detection
    10:52 am on August 17th, 2010

    hi,
    nice and very helpful information.
    thanks

  1. 1 Trackback(s)

  2. Jun 19, 2009: Wordpress 2.8 settings - general save button not loading | Security-Exchange News

Post a Comment



Proudly powered by WordPress. Entries (RSS) and Comments (RSS). Angel by Blog Oh Blog