Wordpress 2.1.1 Command Execution Backdoor Vulnerability

Wordpress 2.1.1 Command Execution Backdoor Vulnerability

References:

WordPress 2.1.1 Dangerous, Upgrade (WordPress)
WordPress source code compromised to enable remote code execution (ifsecure@gmail.com)
Vulnerability Note VU#214480 - WordPress fails to properly sanitize input passed (US-CERT)
Vulnerability Note VU#641456 - WordPress fails to properly sanitize input passed (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus