{QUOTE-> A vulnerability in the current 2.8.3 release of the popular WordPress blogging software can be exploited remotely via a web browser to temporarily lock out administrators. The cause of the issue is an error in the web-based password reset function. Normally when a password reset is requested, the user would be sent a link to their registered email address. Once the link is clicked, the old WordPress password is removed and a new one is generated which is again sent by email. <-QUOTE}The H Security (http://www.h-online.com/security/WordPress-vulnerability-allows-remote-admin-password-reset--/news/113972)