WordPress.org

Ready to get started?Download WordPress

Forums

TTC WordPress Security Tool
Security vulnerability (4 posts)

  1. John Blackbourn
    Member
    Posted 2 years ago #

    Ironically, this "security" plugin contains a glaring SQL injection vulnerability which allows anyone to execute arbitrary SQL commands on any site it's installed on, all while avoiding being added to the blacklists or security logs.

    Could you provide me with a contact email address please and I'll forward on the details? Feel free to email me at johnbillion at gmail.

    John

    http://wordpress.org/extend/plugins/ttc-wordpress-security-plugin/

  2. MickeyRoush
    Member
    Posted 2 years ago #

    John Blackbourn wrote:

    Could you provide me with a contact email address please and I'll forward on the details? Feel free to email me at johnbillion at gmail.

    John

    http://herselfswebtools.com/2008/06/wordpress-security-plugin-block-scrapers-hackers-and-more.html

  3. Mark (podz)
    Support Maven
    Posted 2 years ago #

    The author was informed yesterday and the fix was made within hours.
    Please check the latest version as others are now not being served and should be auto-updated.

  4. MickeyRoush
    Member
    Posted 2 years ago #

    Mark wrote:

    The author was informed yesterday and the fix was made within hours.
    Please check the latest version as others are now not being served and should be auto-updated.

    Will this plugin be reinstated into the WordPress plugin depository?

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic