I have been using WordPress since about 2.2 and one thing I have noticed on all versions since that time is that comments or trackbacks can be submitted to my sites even when I have all comment and trackback facilities turned off.
Because all of these had to be approved it has never been a problem since i simply deleted everything as spam. However, there has been some recent major hacks to my websites and this seems to be one area which the techs i am working with are interested in. Does anyone else know of this?
I’m upgrading now to 3.0.1 but would like to know if this was and/or remains a problem with the new version.
- The topic ‘Does wordpress have major security hole in comment system?’ is closed to new replies.