|
Flaw In Wordpress? Hello, Thought this would be of interest... http://mashable.com/2013/01/01/plug-in-flaw-wordpress/ Take care Jeff Casmer |
Re: Flaw In Wordpress? Jeff. This is really good information. Thanks for the share. While it's not actually WordPress that has the flaw, it's an independent Plugin, W3 Total Cache (W3TC), that is the culprit. While I use a different plugin WP Super Cache to help speed my site up, it's good to know information for those using this specific plugin. Allen |
Re: Flaw In Wordpress? Interesting - thanks Jeff - deactivated! This looks like an opportunity to reiterate what I have said so many times to people - ANY PLUG-IN, WP VERSION, OR THEME THAT IS OUT OF DATE IS VULNERABLE TO A HACKER. Go figure they are often the ones that discover a breach - and they exploit it just because they can. So whenever you see anything that says there is an upgrade available - JUST DO IT! Right Now. It takes under 1 minute and about 3 clicks - |
Re: Flaw In Wordpress? Quote:
|
Re: Flaw In Wordpress? There is a comment in there that there was a fix prior to the article being released. Hopefully this is the case and people are updating it. Though my experience with clients and their WordPress sites, they don't update them even when it's as simple as clicking a link. |
Re: Flaw In Wordpress? Be careful with that plugin. If you do deactivate it, make sure you undo all of the things it does to your site. It's probably a good idea to remove your cache folder and double check your .htaccess to make sure everything is looking alright. |
Re: Flaw In Wordpress? Seems like there's always something vulnerable in WP. It has a lot of security issues. |
Re: Flaw In Wordpress? Quote:
Thanks for the heads up on that Jeff, regards, Mal. |
Re: Flaw In Wordpress? The biggest security flaw on WP is end users that think they need to install everything as a plugin when a lot of times a simple copy/paste in the theme template files will work. |
| All times are GMT -6. The time now is 09:25 AM. |