WordPress Recently relesed version has Multiple Vulnerabilities. It’s a security risk for WordPress 3.3.1 Users. I highly advice you to upgrade your WordPress to newer version or follow the anti-security way that  I provided for you.

Please see this docs for know about full details about Vulnerabilities: http://www.exploit-db.com/exploits/18417/

Here I just write about how you fixed this problem.

Access your /public_html/ or /www/ or /htdocs/ folder or wordpress installtion folder.

open .htaccess file from wordpress installtion root directory.

Then Copy & paste this code:

Now save this file.

Now go to “wp-admin” folder.
create a .htaccess file.

open this file.

copy & paste this code

Now save this.

You are done.

Open in browser & go to…

http://wordpresslink.ext/wp-admin/install.php

or

http://wordpresslink.ext/wp-admin/setup-config.php

If you see 404 Error… that means you successfully done.

Now Open WordPress Themes folder from /wp-content/ themes

Open functions.php file.

Go to the bottom of the page and add this line before the line with ?> and click Update

If you do not have functions.php file, you may create one with the content below and upload to your theme folder:-

 

That’s it.
Some Tips for more security

1) Change default admin name from “admin”
2) Set password mixed Capital Letter, Small Letter, Numeric & Symbols.
3) Change WordPress admin path /wp-admin/ use a small plugin “Lockdown Wp admin” Plugin Page: http://wordpress.org/extend/plugins/lockdown-wp-admin/

Leave a Reply

You must be logged in to post a comment.