How to report a catastrophic plugin exploit? | WordPress.org

WStringer2
(@wstringer2)

12 years, 11 months ago

Hello everyone,

Can someone tell me the best way to report a catastrophic plugin hack with posting the details of the exploit for all the web to see?

It’s a plugin that is in the WP Plugin Repository, and with a malformed URL I can initiate a procedure (within the plugin) that deletes ALL of the images in the WordPress database. Unfortunately, I speak from experience as this happened to us.

Thankfully it’s not a very popular plugin, but it has been downloaded several thousand times so I’d like to warn people who may be using it…without posting details of the exploit.

Thanks,

Walt

Viewing 2 replies - 1 through 2 (of 2 total)

esmi
(@esmi)

12 years, 11 months ago

Please email all of the relevant details to plugins [at] wordpress.org as well as to the plugin’s developer (if possible).

Thread Starter WStringer2
(@wstringer2)

12 years, 11 months ago

Will do…thanks esmi!

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘How to report a catastrophic plugin exploit?’ is closed to new replies.

In: Hacks
2 replies
2 participants
Last reply from: WStringer2
Last activity: 12 years, 11 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics