WordPress.org

Forums

WPtouch Mobile Plugin
Opened my sites to attack (3 posts)

  1. KS2 Problema
    Member
    Posted 11 months ago #

    Not too happy.

    I installed the patch for the recent vulnerability, had the silly notion I was safe (when are we ever? -- understood) and almost immediately was hit with a series of attempts to breach the sites on my server as well as suspicious activity in WPTouch folders and related files. Rather than go through it all again, I removed almost all instances and disabled the others. Perhaps time to go responsive anyway.

  2. BraveNewCode Inc.
    Member
    Plugin Author

    Posted 10 months ago #

    We do our best to make sure there are no security issues, but occasionally a third party notifies us of an issue and we attempt to resolve it. Unfortunately with the last issue, nobody gave us a chance to address it before it was made public, which doesn't really help anyone. That said, the last security issue we patched only affected administrators who were logged in, so it would not have opened vulnerability for regular site visitors on your site.

  3. KS2 Problema
    Member
    Posted 10 months ago #

    Thanks for your response. I'm sure the issue was far more traumatic for your shop. This, of course, highlights the vulnerabilities implicit to this form of development. Plugins extend our capabilities and reach, but come with their own tradeoffs. Good luck to you.

Reply

You must log in to post.

About this Plugin

  • WPtouch Mobile Plugin
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic

Tags

No tags yet.