Comments on: 2 Plugin Security Bulletins

By: WordPress Wednesday News: WordPress 2.5 News, Colleges and Schools Love WordPressMU, Viddler Meets WordPress, Theme Buyers Beware, Columns in Blog Posts, Feeds Without Plugins : The Blog Herald

Wed, 20 Feb 2008 23:57:18 +0000

[...] Weblog Tools Collection announces two Plugin security issues with WP-Footnotes and WordSpew AJAX Shoutbox. [...]

By: Updates at Misstuned » Blog Archive » Deactivated WP Footnotes

Updates at Misstuned » Blog Archive » Deactivated WP Footnotes — Thu, 14 Feb 2008 04:26:17 +0000

[...] reading this, Mari deactivated the plugin WP Footnotes on both blogs that were running it, Mt and Mt’s [...]

By: ???????? » ??????????????????????????????????

???????? » ?????????????????????????????????? — Fri, 08 Feb 2008 14:25:13 +0000

[...] WP-Footnotes (Weblog Tools Collection » Blog Archive » 2 Plugin Security Bulletins??) [...]

By: Le Blog de Pierre » Archive du blog » AJAX Shoutbox (with sound alert, who’s online and without spam)

Fri, 08 Feb 2008 09:46:51 +0000

[...] possibility of a SQL injection in the wordspew-rss.php file. Thanks to Jérôme who informs me and S@BUN who discover the bug (but to not alert me ) Have a try on it and give me some feedback please [...]

By: Len

Len — Fri, 08 Feb 2008 05:19:45 +0000

@chaoskaizer - Several sites already do. The ones I follow are,
http://blogsecurity.net
http://www.securityfocus.com
http://www.milw0rm.com

With MilwOrm just type ‘WordPress’ in the search box.

By: Playmobils Estropiés & Associés » Blog Archive » Faille sécurisée: attention à la shoutbox (wordsprew) de Pierre danger injection sql

Thu, 07 Feb 2008 23:11:36 +0000

[...] à noter que ce matin, j’ai lu également l’annonce de cette faille. [...]

By: Power

Power — Thu, 07 Feb 2008 16:06:05 +0000

Tnx, for the advise =), as always good info.

By: chaoskaizer

chaoskaizer — Thu, 07 Feb 2008 15:53:57 +0000

I agree with KirkM ↑ , somebody should start monitoring wp-related security “consistently”. thanks for the notes jeff

By: KirkM

KirkM — Thu, 07 Feb 2008 15:37:50 +0000

These security alerts are excellent, just what was needed and thanks for taking the time to find this info out and posting for all to read!

Things are really coming to together in the WordPress community are they not?

By: Tadd

Tadd — Thu, 07 Feb 2008 15:25:22 +0000

As always, thanks for the information and heads up!