Comments on: Security alert: WordPress Competition Winning Plugins Vulnerable http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/ Tech & Design Mon, 06 Oct 2008 12:56:38 +0000 http://wordpress.org/?v=2.3.3 By: Jan http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-5146 Jan Mon, 03 Sep 2007 13:03:35 +0000 http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-5146 Mistakes happen? :) Mistakes happen? :)

]]> By: Amy http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4841 Amy Thu, 30 Aug 2007 21:32:12 +0000 http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4841 Personally, I think I would have a few people check my plugin before I went submitting it as a finished product. Then again, I can't make them so nevermind. :P Congrats to the winner, but it's kinda lame that he was the way he was about the hosting prize. Personally, I think I would have a few people check my plugin before I went submitting it as a finished product. Then again, I can’t make them so nevermind. :P

Congrats to the winner, but it’s kinda lame that he was the way he was about the hosting prize.

]]> By: David http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4757 David Wed, 29 Aug 2007 22:10:39 +0000 http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4757 How much damage can be done on a vulnerable plugin? It seems it can be a doorway to attacks? How much damage can be done on a vulnerable plugin? It seems it can be a doorway to attacks?

]]> By: Anirudh http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4661 Anirudh Tue, 28 Aug 2007 11:47:12 +0000 http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4661 There's no real proof that it can be done and virtually every script is vunerable to csrf and XSS, anyways, this minor problem is fixed. Please read this: http://anirudhsanjeev.org/on-oneclick-security/ thanks. There’s no real proof that it can be done and virtually every script is vunerable to csrf and XSS, anyways, this minor problem is fixed. Please read this:
http://anirudhsanjeev.org/on-oneclick-security/

thanks.

]]> By: Kirk M http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4624 Kirk M Mon, 27 Aug 2007 23:47:40 +0000 http://www.clazh.com/security-alert-wordpress-competition-winning-plugins-vulnerable/#comment-4624 Has an email been sent to the author of OneClick with this info? I don't see an update yet nor an acknowledgment of a comment about this left by David in Spanish of all things. Either way, since I've worked with Anirudh on a couple of bugs early on, I'm sending one myself. Has an email been sent to the author of OneClick with this info? I don’t see an update yet nor an acknowledgment of a comment about this left by David in Spanish of all things. Either way, since I’ve worked with Anirudh on a couple of bugs early on, I’m sending one myself.

]]>