New 0-Day WordPress 2.8.4 Exploit

WordPress is vulnerable to a very dirty exploit right now as of 2.8.4. There’s a resource exhaustion DoS that is floating around the public right now. It’s a vulnerability in wp-trackbacks.php that hurts. Here’s the results from a quick test against my server: 13:30:29 up 36 days, 1:06, 12 users, load average: 45.06, 17.11, 6.24 … Continue reading New 0-Day WordPress 2.8.4 Exploit