Does WordPress have a security hole?
 

Hey,

Is the nasty wp exploit floating around you speak of, what does it pertain too? the core wp install? Would I find it if I searched some of the 0day sites..

Been very busy lately and havent been scouring the blackhat sites lately.. I have some client sites I'd want to manually patch if thats the case

This question was asked in a private message. Rather than hide our tech advice in private conversations, Site Staff will often answer PMs (from any site) here in the digitalFAQ.com forum, so that others may read and benefit from our expertise. Please continue the conversation here. Either login or join as a Free Member, and we can continue troubleshooting your video, photo or web related issue. Thanks for understanding our tech Q&A policies.

It was a login error in WordPress. The easiest way to thwart it was to have IP restrictions (i.e., htaccess) on the wp-admin folder.
This person would have never been infected had he done that.

If anybody wants to know more, start a new post, and I'll be glad to help. :)

This was an unanswered question or unresolved issue found during a site audit. It's hard to have an FAQ when the answers are missing, or final outcomes are unknown. At The Digital FAQ support forum, questions are never intentionally ignored, and may have been missed due to a forum glitch or human error. More details on the audit. (In some cases, threads have been edited/updated with newer information.)