Comments on: Best Plugins From The Wordpress Plugin Competition

By: David Carrero Fdez-Baillo

David Carrero Fdez-Baillo — Mon, 27 Aug 2007 06:20:41 +0000

Please check the security for this plugins.
Por favor revisar la seguridad de los plugins.

1. WordPress Automatic Upgrade: Permite a cualquier usuario no autenticado:
* Generar y descargar los archivos de WordPress (incluye wp-config.php).
* Generar y descargar una copia de seguridad de la base de datos donde está instalado el plugin.
* Activar/Desactivar todos los plugins.
* Actualizar la versión de WordPress.
2. OneClick: Al ser vulnerable a CSRF, permite descargar plugins — o código malicioso — desde cualquier URL.
3. Who Sees Ads: Es vulnerable a CSRF y XSS.
4. MyDashboard: Es vulnerable a CSRF y XSS.

By: kanak

kanak — Sat, 18 Aug 2007 08:46:11 +0000

Dude , I am trying to use this who sees adds plugin. Seems pretty bad. I tried commenting on user’s website , but seems my ip is blacklisted. Have you tried this ?? need help

By: Arpit Jacob

Arpit Jacob — Thu, 16 Aug 2007 10:20:14 +0000

@terinea good one, I forgot about vtiger.

By: Terinea Weblog

Terinea Weblog — Thu, 16 Aug 2007 08:18:50 +0000

Vtiger is excellent open source CRM. It has toolbar’s that can integrate into Word, Excel, Thunderbird, Firefox and Outlook. Other so called Open Source CRM’s require additional payments for these tools.

Jamie

By: Arpit Jacob

Arpit Jacob — Thu, 16 Aug 2007 04:13:24 +0000

@Lorelle he he At first even I had to scratch my head to figure it out. CRM is a broad term. I see this Plugin being more useful to people who are running WordPress as a CMS. I don’t know if you have heard of http://civicrm.org or http://www.sugarcrm.com. These are two of the most popular Open Source Customer relationship management (CRM) software. There are plugins for Drupal and Joomla that make use of civicrm to enable CRM on a site. It is used by large websites to manage sales and customer queries and support.