A few months ago, I wrote about encountering a spam injection exploit affecting my WordPress blog and what I did to expunge it from my system. A few days later, I wrote a short entry about how to identify sites affected by this particular exploit using Google. There were a lot of sites at the time, but now it looks like the list is shorter, which is a good thing.
But, there are still a lot of similar exploits affecting WordPress blogs and indexing services, like Technorati, are starting to react. Mark Ghosh over at the Weblog Tools Collection and Dougal Campbell at Geek Ramblings both wrote about an announcement from Technorati, one of the larger blog search engines, announced in their blog that they are going to stop indexing sites that have been exploited by things like what I wrote about because it’s polluting their databases. This means that a lot of sites are at risk of dropping off the radar, so to speak, because they haven’t stayed current with the latest version of WordPress.
Currently, anything before WordPress 2.3.3 should be upgraded immediately to version 2.3.3 or later. Ideally, upgrade to WordPress 2.5, which also offers a bunch of cool new features. I upgraded at the end of March and haven’t had any problems as a result.
What’s stopping you?