WordPress.org

Ready to get started?Download WordPress

Forums

malcor hack (5 posts)

  1. grawil
    Member
    Posted 6 years ago #

    Just curious if anyone has been able to confirm the existence of a .htaccess vulnerability exploited to hack glennwolsey and macapper?

  2. moshu
    Member
    Posted 6 years ago #

  3. grawil
    Member
    Posted 6 years ago #

    Seems that story has been buried on digg... The macapper post I linked suggests that it is a WP problem and that they would report it. Having just spent two hours looking for holes in my WP installs, I'd be rather annoyed if this was nothing more than a lame PR stunt by a bunch of 14 year olds.

  4. moshu
    Member
    Posted 6 years ago #

    I don't know... just found it interesting.
    On the other hand - having any file (including .htaccess) world writable is not a good thing, I agree.

  5. grawil
    Member
    Posted 6 years ago #

    It appears that glennwolsey, macapper, applematters were all part of an elaborate fraud.

    http://www.applematters.com/index.php/section/comments/a-bad-pr-stunt/
    http://expressionengine.com/forums/viewthread/65867/

    Perhaps I'll find this funny at some point... but for the moment I'm rather annoyed that I wasted time looking for holes that weren't there.

Topic Closed

This topic has been closed to new replies.

About this Topic