As you can see, the b2email.php public expose your login and email. And there is a bug too:
Subject: blog:testing post via email
Content-type: text/plain, boundary:
Login: admin, Pass: ****
Fatal error: Call to undefined function: rss_update() in /wp/b2mail.php on line 221
- The topic ‘b2mail security and bug’ is closed to new replies.