WP-Stats Plugin Vulnerability
If you like this post, please subscribe to our RSS feed to read our new posts every day.
WP-Stats Plugin Vulnerability: An SQL injection vulnerability has been found in the plugin WP-Stats version 2.x where the author parameter is not sanitized before it is used. At the time of writing, I am not sure which WP-Stats Secunia is talking about. However, if you use version 2.x of this plugin, please disable it till a patch is developed.
[EDIT]: See here for the new version that fixes the vulnerability. Thanks Ronald.
(No Ratings Yet)
Loading ...
Visitors who read this post, also read:
Related posts from the past
- WP-Forum Plugin Security Bulletin
- 2in1 Security Bulletin
- Wordpress 1.x Security Update
- Security Alert: Vistered Little
- 2 Plugin Security Bulletins
- WP Plugin: Bad Behavior Stats v2.0
- Permalinks Migration Vulnerability
- Photo Album Plugin Vulnerabilities
- APAD: WordPress Plugin Download Statistics
- WP-Plugin: Bad Behavior Stats v2.1
Comments RSS
Obviously Powered by 
Sicherheitslcke in WP-Stats Plugin
Gemss Secunia weist das Wordpress Plugin WP-Stats eine Sicherheitslcke auf, der es Angreifern erlaubt, SQL-Code auf dem Server auszufhren:
BloggingTom — 01/17/2006 @ 10:57 amPreddy has discovered a vulnerability in WP-Stats, which can be exploited by malicious people to conduct SQL…
It’s gamerz WP-Stats, and the problem is solved.
[Reply]
Ronald (1 comments.) — 01/17/2006 @ 1:21 pm