Comments on: WP-Forum Plugin Security Bulletin

By: WordPress Weekly Episode 3 | Jeffro2pt0

WordPress Weekly Episode 3 | Jeffro2pt0 — Fri, 25 Apr 2008 08:03:50 +0000

[...] WP-Forum SQL Injection Vulnerability - Earlier this week, the websec security team has discovered a vulnerability within this plugin that can be exploited by malicious users to conduct SQL injection attacks [...]

By: diegesis » Blog Archive » WordPress 2.3.3

diegesis » Blog Archive » WordPress 2.3.3 — Wed, 23 Apr 2008 07:48:59 +0000

[...] there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]

By: ondamaris » Blog Archiv » Forum neu da

ondamaris » Blog Archiv » Forum neu da — Tue, 25 Mar 2008 09:20:24 +0000

[...] Forum ist derzeit aus Sicherheitsgründen deaktiviert - sorry. Sobald der vermutete Bug im Plugin behoben oder geklärt ist, geht’s [...]

By: Blog.com - Blogger » Blog Archive » WordPress 2.3.3

Blog.com - Blogger » Blog Archive » WordPress 2.3.3 — Tue, 11 Mar 2008 17:25:35 +0000

[...] there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]

By: Simon

Simon — Mon, 10 Mar 2008 19:34:32 +0000

Just for the record, I always use something like $user = intval($user); to ensure input that should be a whole number is sanitised. Rather than check whether it is an integer, why not force it to be one (if it’s not numeric, 0 is returned)?

By: WordPress 2.3.3 | FastPuppy News

WordPress 2.3.3 | FastPuppy News — Tue, 04 Mar 2008 00:03:25 +0000

[...] it over your existing xmlrpc.php. Otherwise, you can get the entire release here. Also, there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]

By: ??wordpress???????????WordPress 2.3.3 | ????

??wordpress???????????WordPress 2.3.3 | ???? — Tue, 26 Feb 2008 01:07:41 +0000

[...] ???WordPress??WP-Forum?????????????????????????????????????????? Published in wordpress Tags: wordpress [...]

By: WordPress 2.3.3????? - ????,????

WordPress 2.3.3????? - ????,???? — Mon, 25 Feb 2008 19:43:19 +0000

[...] WordPress??WP-Forum?????????????????????????????????????????? [...]

By: Wp Daniel Daphone Magazine» wordpress » The latest stable release of WordPress (Version 2.3.3)

Mon, 25 Feb 2008 11:53:14 +0000

[...] download the certain version xmlrpc.php and copied him more you were xmlrpc.php. Also, there was frailty in WP-Forum plugin that actively was exploited immediately. If you were using this plugin, please evacuated him until [...]

By: Share game » Blog Archive » WordPress 2.3.3 ????????

Share game » Blog Archive » WordPress 2.3.3 ???????? — Sun, 24 Feb 2008 23:55:38 +0000

[...] ???????wp-forum?????????????????????????????????????????????? [...]

By: Forums disabled | Sin8.com

Forums disabled | Sin8.com — Sun, 24 Feb 2008 14:32:04 +0000

[...] http://weblogtoolscollection.com/archives/2008/01/21/wp-forum-plugin-security-bulletin/ [...]

By: WordPress 2.3.3 | Nyem.Or.Id

WordPress 2.3.3 | Nyem.Or.Id — Wed, 20 Feb 2008 04:39:49 +0000

[...] ada kelemahan di plugin WP-Forum yang saat ini sedang dieksploitasi secara aktif. Jika Anda menggunakan plugin ini, harap [...]

By: ???phper?? » Blog Archive » WordPress 2.3.3 ????????

???phper?? » Blog Archive » WordPress 2.3.3 ???????? — Wed, 20 Feb 2008 04:03:55 +0000

[...] ???????wp-forum?????????????????????????????????????????????? [...]

By: WordPress 2.3.3 — How To Tell

WordPress 2.3.3 — How To Tell — Tue, 19 Feb 2008 10:48:52 +0000

[...] there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]

By: WordPress 2.3.3???? | Apple Orchard

WordPress 2.3.3???? | Apple Orchard — Tue, 19 Feb 2008 06:40:54 +0000

[...] there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]

By: WordPress 2.3.3 : Emma Jensen

WordPress 2.3.3 : Emma Jensen — Sat, 16 Feb 2008 14:15:48 +0000

[...] it over your existing xmlrpc.php. Otherwise, you can get the entire release here.Also, there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]

By: RichardPalace.com

RichardPalace.com — Sat, 16 Feb 2008 01:32:29 +0000

[...] there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]

By: WordPress 2.3.3 - PinoyPortal

WordPress 2.3.3 - PinoyPortal — Fri, 15 Feb 2008 18:23:34 +0000

[...] additional warning is issued regarding the WP Forum plugin which contains a vulnerability that is still actively exploited. If you’re running this plugin, it is strongly advised that [...]

By: WordPress 2.3.3 | Fromtheold

WordPress 2.3.3 | Fromtheold — Thu, 14 Feb 2008 08:14:27 +0000

By: WordPress Update : The Code Sniffer

WordPress Update : The Code Sniffer — Wed, 13 Feb 2008 23:23:57 +0000

[...] there is a vulnerability in the WP-Forum plugin that is being actively exploited right now. If you are using this plugin, please remove it until an [...]