WP-Stats Plugin Vulnerability: An SQL injection vulnerability has been found in the plugin WP-Stats version 2.x where the author parameter is not sanitized before it is used. At the time of writing, I am not sure which WP-Stats Secunia is talking about. However, if you use version 2.x of this plugin, please disable it till a patch is developed.
[EDIT]: See here for the new version that fixes the vulnerability. Thanks Ronald.
Sicherheitslcke in WP-Stats Plugin
Gemss Secunia weist das WordPress Plugin WP-Stats eine Sicherheitslcke auf, der es Angreifern erlaubt, SQL-Code auf dem Server auszufhren:
Preddy has discovered a vulnerability in WP-Stats, which can be exploited by malicious people to conduct SQL…
An avid fan of business, education, technology and finance. I lead a lean, highly focussed and capable team of Java Back End developers and Front End developers through a maze of complex software wizardry to fulfill the web maintenance needs of a large chemical manufacturer. As per Myers-Briggs Personality Types, I am an ESTJ. I pride in a project completed on time and according to plan. My hobbies include all kinds of technology, anything that I can taste and anything that goes fast or flies in the air. I like to read business books and comics in my spare time.
Obviously Powered by WordPress. © 2003-2013
It’s gamerz WP-Stats, and the problem is solved.