http://www.bbc.co.uk/news/technology-38930428
I just saw the article about the major Wordpress vulnerability and it seems my site was affected. One of the most recent posts was hijacked and replaced with a Viagra spam post. I've restored the original post back (and obviously updated Wordpress) but was wondering what else I should be checking, as neither the news article or Wordpress update overview mentioned anything.
Is the exploit an SQL injection, and in which case should all account passwords etc be changed? Should I be looking for bad plugins etc?
Also an FYI for those with Wordpress sites that haven't been updated in the last week or two.
I just saw the article about the major Wordpress vulnerability and it seems my site was affected. One of the most recent posts was hijacked and replaced with a Viagra spam post. I've restored the original post back (and obviously updated Wordpress) but was wondering what else I should be checking, as neither the news article or Wordpress update overview mentioned anything.
Is the exploit an SQL injection, and in which case should all account passwords etc be changed? Should I be looking for bad plugins etc?
Also an FYI for those with Wordpress sites that haven't been updated in the last week or two.