WordPress.org

Ready to get started?Download WordPress

Forums

[Plugin: ShareThis] Security risks with Share This (7 posts)

  1. mopsfidel
    Member
    Posted 6 years ago #

    Share This is nasty.
    Since version 2.0 this plugin loads the main code (javascript) from the server of Nextumi. This is a high security risk.
    - the developer can change the code without permission of the user
    - Nextumi can track the whole readers behavior

    http://wordpress.org/extend/plugins/share-this/

  2. harknell
    Member
    Posted 6 years ago #

    If this is an issue for you I would suggest using the "classic" version like I do which is totally contained on your own server. I agree that It's a risk--more so from if hackers were to get control of their site and could send malicious stuff out than they themselves doing it, but it's still a risk when you give up control like this.

  3. spidersilk
    Member
    Posted 6 years ago #

    Unfortunately, using an older version doesn't appear to be possible in WP 2.5. All it shows on the plug-in page is a notice saying you have to upgrade - there's no option to activate the plug-in. :-(

  4. sombra
    Member
    Posted 6 years ago #

    @spidersilk

    wrong. I'm using sharethis classic 1.5.2 without any issues on wp 2.5

  5. allshookup
    Member
    Posted 5 years ago #

    What is the security risk with the new version 2.3?

  6. allshookup
    Member
    Posted 5 years ago #

    Anyone know of any security risk using this with WP2.7?

  7. mullerja135
    Member
    Posted 5 years ago #

    I'd also like to know if the security vulnerability is still present in WP 2.7 or the current WPMU install as of Jan 2009... Please let us know, if your in the know for either of these installs. Thanks

Topic Closed

This topic has been closed to new replies.

About this Topic