Title: WordPress 2.7 Admin takeover
Last modified: August 19, 2016

---

# WordPress 2.7 Admin takeover

 *  [zvoort](https://wordpress.org/support/users/zvoort/)
 * (@zvoort)
 * [17 years, 6 months ago](https://wordpress.org/support/topic/wordpress-27-admin-takeover/)
 * Hi there,
 * Today my WordPress 2.7 blog got hacked by a friend of mine. He said he was able
   to do this and i wouldnt believe him so i took the risk 🙂
 * He took over my admin account, created a new password for it and changed the 
   e-mail adress of it.
 * Lucky after all, it was a friend of me, but this should not be possible,… right?
 * He told me he used sql injection on it. Is this a known bug?

Viewing 5 replies - 1 through 5 (of 5 total)

 *  [Samuel B](https://wordpress.org/support/users/samboll/)
 * (@samboll)
 * [17 years, 6 months ago](https://wordpress.org/support/topic/wordpress-27-admin-takeover/#post-927316)
 * please email [security@wordpress.org](https://wordpress.org/support/topic/wordpress-27-admin-takeover/security@wordpress.org?output_format=md)
   to verify
 *  [Duke](https://wordpress.org/support/users/dukessa/)
 * (@dukessa)
 * [17 years, 6 months ago](https://wordpress.org/support/topic/wordpress-27-admin-takeover/#post-927477)
 * [http://wordpress.org/support/topic/225255?replies=1](http://wordpress.org/support/topic/225255?replies=1)
 * Someone hacked mine too.
 * single.php and wp-config got changed/replaced
 *  [kchayka](https://wordpress.org/support/users/kchayka/)
 * (@kchayka)
 * [17 years, 6 months ago](https://wordpress.org/support/topic/wordpress-27-admin-takeover/#post-927583)
 * What is the status of this? I don’t want to upgrade if there is a chance my client
   sites could easily be hacked. I’ve got clients on both Windows and Linux servers.
 *  Thread Starter [zvoort](https://wordpress.org/support/users/zvoort/)
 * (@zvoort)
 * [17 years, 5 months ago](https://wordpress.org/support/topic/wordpress-27-admin-takeover/#post-927704)
 * Hmz, thank you guys but i won’t get an answer from the guy. Still trying, if 
   i got an update i will let you guys know.
 *  [Franz Josef Kaiser](https://wordpress.org/support/users/f-j-kaiser/)
 * (@f-j-kaiser)
 * [17 years, 5 months ago](https://wordpress.org/support/topic/wordpress-27-admin-takeover/#post-927705)
 * yeah, please kick his a** and get some answers. 2.7 is new and definitely worth
   an upgrade, but not if i´m hearing that it got hacked a third time…

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘WordPress 2.7 Admin takeover’ is closed to new replies.

## Tags

 * [hacked](https://wordpress.org/support/topic-tag/hacked/)

 * In: [Requests and Feedback](https://wordpress.org/support/forum/requests-and-feedback/)
 * 5 replies
 * 5 participants
 * Last reply from: [Franz Josef Kaiser](https://wordpress.org/support/users/f-j-kaiser/)
 * Last activity: [17 years, 5 months ago](https://wordpress.org/support/topic/wordpress-27-admin-takeover/#post-927705)
 * Status: not resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics