2nd Jan 2013, 01:24 PM | #1 |
Senior Warrior Member War Room Member Join Date: 2003 Location: Chicago
Posts: 1,037
Thanks: 31
Thanked 250 Times in 192 Posts
Blog Entries: 5 |
Hello, Thought this would be of interest... http://mashable.com/2013/01/01/plug-in-flaw-wordpress/ Take care Jeff Casmer |
Why Dont You Learn How To Trade the Foreign Exchange Markets? Reach Me on FB 30DTS Challenge | IM Training | IM Community | AFF Program | |
The Following 2 Users Say Thank You to Jeff Casmer For This Useful Post: |
2nd Jan 2013, 01:45 PM | #2 |
Article Marketer War Room Member Join Date: 2005 Location: Orange, Ca. , USA.
Posts: 558
Thanks: 151
Thanked 270 Times in 184 Posts
|
Jeff. This is really good information. Thanks for the share. While it's not actually WordPress that has the flaw, it's an independent Plugin, W3 Total Cache (W3TC), that is the culprit. While I use a different plugin WP Super Cache to help speed my site up, it's good to know information for those using this specific plugin. Allen |
Amazing Deals On Mens and Womens Jewelry - - Gies Jewelry Shop Watches for all occasions -Gies Watch Shop The latest in Cameras and Photography - Good Tyme Photography Need a new phone or upgrade? - Gies Mobile Phones Number 1 Source For Kids Toys & Games - Shop For Toys & Games | |
2nd Jan 2013, 05:36 PM | #3 |
OffTheWallflowerChild War Room Member Join Date: 2004 Location: USA
Posts: 2,776
Thanks: 6,161
Thanked 2,625 Times in 1,763 Posts
|
Interesting - thanks Jeff - deactivated! This looks like an opportunity to reiterate what I have said so many times to people - ANY PLUG-IN, WP VERSION, OR THEME THAT IS OUT OF DATE IS VULNERABLE TO A HACKER. Go figure they are often the ones that discover a breach - and they exploit it just because they can. So whenever you see anything that says there is an upgrade available - JUST DO IT! Right Now. It takes under 1 minute and about 3 clicks - |
Patricia Brucoli Plug-In Profit Site Helpdesk | |
4th Jan 2013, 07:23 AM | #4 | |
Advanced Warrior Registered Member Join Date: 2009 Location: Brisbane, Australia
Posts: 594
Thanks: 99
Thanked 130 Times in 104 Posts
|
| |
| ||
4th Jan 2013, 02:48 PM | #5 |
Warrior Member War Room Member Join Date: 2013 Location: Aurora, CO
Posts: 16
Thanks: 1
Thanked 1 Time in 1 Post
|
There is a comment in there that there was a fix prior to the article being released. Hopefully this is the case and people are updating it. Though my experience with clients and their WordPress sites, they don't update them even when it's as simple as clicking a link. |
HitMyServer.com - Web, Email, Development HitMyServer.net - Web/Server Posts Do you have premium WordPress Plugins. Checkout my WordPress Plugin Manager for providing updates to your clients. | |
7th Jan 2013, 12:09 PM | #6 |
HyperActive Warrior Join Date: 2010
Posts: 225
Thanks: 3
Thanked 29 Times in 29 Posts
|
Be careful with that plugin. If you do deactivate it, make sure you undo all of the things it does to your site. It's probably a good idea to remove your cache folder and double check your .htaccess to make sure everything is looking alright.
|
| |
7th Jan 2013, 07:11 PM | #7 |
Advanced Warrior War Room Member Join Date: 2004 Location: Iowa, USA
Posts: 969
Thanks: 99
Thanked 183 Times in 117 Posts
|
Seems like there's always something vulnerable in WP. It has a lot of security issues.
|
You can find internet marketing strategies, SEO consulting, and tons of business advice at BAM!
| |
23rd Jan 2013, 07:30 AM | #8 | |
HyperActive Warrior War Room Member Join Date: 2006 Location: United Kingdom
Posts: 303
Thanks: 5
Thanked 53 Times in 48 Posts
|
Thanks for the heads up on that Jeff, regards, Mal. | |
| ||
23rd Jan 2013, 07:35 AM | #9 |
Banned Join Date: 2010
Posts: 22,778
Thanks: 2,721
Thanked 11,364 Times in 7,490 Posts
|
The biggest security flaw on WP is end users that think they need to install everything as a plugin when a lot of times a simple copy/paste in the theme template files will work.
|
Bookmarks |
Tags |
flaw, wordpress |
| |