All Good Things Must Come To An End

As you all know, I have been doing WordPress plugins and supporting it for the past 6 years. These 6 years of my life, I have been through my polytechnic education, my national service as well as my university education.

I just graduated from university in December 2009 and have been looking for full-time jobs. I am offered a full-time job and will be starting work on 1st February 2010.

I regret to say that I am NOT ABLE to provide support for my plugins anymore due to my full-time job commitment. I will leave this forum open and let the community help one another.

However, I WILL still update my plugins whenever I can and you still can report bugs to me via email and I will try to fix it.

« previous next »
Pages: [1]   Go Down

Author Topic: Wordpress SQL injection?  (Read 9057 times)

0 Members and 1 Guest are viewing this topic.

Offline peacefulparadox.com

  • Newbie
  • *
  • Posts: 9
  • FunAndEducational.com
    • View Profile
Wordpress SQL injection?
« on: 25 June 2008, 02:05 »
I happened across this post on the internet about SQL injection in WordPress...

http://wordpress-plugins.feifei.us/40/attack-of-the-wordpress-hacking-spam-trackbacks/

Is this something we have to worry about?  Or how shall we prevent SQL injections in WordPress?  The post didn't really say.

Logged

Offline GaMerZ

  • lesterchan.net
  • Administrator
  • *****
  • Posts: 11,692
    • View Profile
  • WordPress Version: WordPress 3.0.x
  • Theme Name: lesterchan.net v3.4
Re: Wordpress SQL injection?
« Reply #1 on: 25 June 2008, 06:30 »
The only way to prevent SQL injection is to stay up to date with WP. But since this issue is posted on 7th June and the WordPress team did not say anything, it maybe a false alarm.
Logged

++ lesterchan.net - Lester Chan's Website

I regret to say that I am not able to provide support for my plugins anymore due to my full-time job commitment. I will leave this forum open and let the community help one another.

Offline chris81

  • Newbie
  • *
  • Posts: 1
    • View Profile
Re: Wordpress SQL injection?
« Reply #2 on: 23 September 2008, 20:07 »
WordPress is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.WordPress 2.5 is vulnerable; other versions may also be affected.
-----------------
chris
« Last Edit: 23 September 2008, 20:13 by GaMerZ »
Logged

Offline GaMerZ

  • lesterchan.net
  • Administrator
  • *****
  • Posts: 11,692
    • View Profile
  • WordPress Version: WordPress 3.0.x
  • Theme Name: lesterchan.net v3.4
Re: Wordpress SQL injection?
« Reply #3 on: 23 September 2008, 20:12 »
any proof to backup your claim?
Logged

++ lesterchan.net - Lester Chan's Website

I regret to say that I am not able to provide support for my plugins anymore due to my full-time job commitment. I will leave this forum open and let the community help one another.
Pages: [1]   Go Up
« previous next »