WPtouch Mobile Plugin
Opened my sites to attack (3 posts)

  1. KS2 Problema
    Posted 1 year ago #

    Not too happy.

    I installed the patch for the recent vulnerability, had the silly notion I was safe (when are we ever? -- understood) and almost immediately was hit with a series of attempts to breach the sites on my server as well as suspicious activity in WPTouch folders and related files. Rather than go through it all again, I removed almost all instances and disabled the others. Perhaps time to go responsive anyway.

  2. BraveNewCode Inc.
    Plugin Author

    Posted 1 year ago #

    We do our best to make sure there are no security issues, but occasionally a third party notifies us of an issue and we attempt to resolve it. Unfortunately with the last issue, nobody gave us a chance to address it before it was made public, which doesn't really help anyone. That said, the last security issue we patched only affected administrators who were logged in, so it would not have opened vulnerability for regular site visitors on your site.

  3. KS2 Problema
    Posted 1 year ago #

    Thanks for your response. I'm sure the issue was far more traumatic for your shop. This, of course, highlights the vulnerabilities implicit to this form of development. Plugins extend our capabilities and reach, but come with their own tradeoffs. Good luck to you.

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • WPtouch Mobile Plugin
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic


No tags yet.