PodCastEmpire.com

  Podcasters Beware: Your Blog May Be Under Attack Hackers are beginning to target security flaws in the XML-RPC libraries (PHPXMLRPC and Pear XML-RPC) used by the popular content management software WordPress and Drupal as well as PostNuke, Serendipity, phpAdsNew and phpWiki.

Publishers of this software released fixes over 6 months ago, but many are still unaware of the security flaw itself. So beware, if you use any of these applications on your web server please check back at the publisher homepage for fixes. Authors of the XML-RPC libraries have also issued fixes.

It has been said that the attacks will install a trojan on the web server which may allow remote access to the web server. This may lead to data theft, phishing, or simply corruption of data.

If you are not aware of the XML-RPC libraries used in your blogging application please check the vendor page or contact the publisher to inquire about the libraries in use with their application.   ¶ 23:16