Comments on: Security Exploit Discovered http://www.pligg.com/blog/181/security-exploit-discovered/ Pligg is a Social Netoworking Content Management System that lets many users submit and rate news items. Sun, 23 Nov 2008 15:11:13 +0000 http://wordpress.org/?v=2.6.3 By: Eric Heikkinen http://www.pligg.com/blog/181/security-exploit-discovered/#comment-24994 Eric Heikkinen Fri, 01 Aug 2008 00:23:01 +0000 http://www.pligg.com/blog/?p=181#comment-24994 Please grab the latest release here: http://forums.pligg.com/current-version/14301-pligg-beta-9-9-5-a.html#post65151 A mass email has been sent out to all 35,000 Pligg members, you can read it online here: http://www.pligg.com/blog/188/pligg-995-security-fix/ Please grab the latest release here:
http://forums.pligg.com/current-version/14301-pligg-beta-9-9-5-a.html#post65151

A mass email has been sent out to all 35,000 Pligg members, you can read it online here:
http://www.pligg.com/blog/188/pligg-995-security-fix/

]]> By: Kerry Garrison http://www.pligg.com/blog/181/security-exploit-discovered/#comment-24975 Kerry Garrison Thu, 31 Jul 2008 15:38:31 +0000 http://www.pligg.com/blog/?p=181#comment-24975 What happened to me last night was far more serious. The exploit allowed the hacker to install their own php files into the root directory. Since there has been no disclosure from pligg as to what exploits they know about or what they can do, this may very well be a new one. What happened to me last night was far more serious. The exploit allowed the hacker to install their own php files into the root directory. Since there has been no disclosure from pligg as to what exploits they know about or what they can do, this may very well be a new one.

]]> By: Eric Heikkinen http://www.pligg.com/blog/181/security-exploit-discovered/#comment-24973 Eric Heikkinen Thu, 31 Jul 2008 12:14:24 +0000 http://www.pligg.com/blog/?p=181#comment-24973 You may want to disable registration by removing the register.php file. You could also try using the ReCaptcha captcha module, we haven't heard whether or not the one auto-submission hack has found a way around that. A solution will be posted soon. You may want to disable registration by removing the register.php file. You could also try using the ReCaptcha captcha module, we haven’t heard whether or not the one auto-submission hack has found a way around that. A solution will be posted soon.

]]> By: Kerry Garrison http://www.pligg.com/blog/181/security-exploit-discovered/#comment-24971 Kerry Garrison Thu, 31 Jul 2008 07:54:27 +0000 http://www.pligg.com/blog/?p=181#comment-24971 My site was compromised this morning, how do we fix these holes? Otherwise I have to take this site down. My site was compromised this morning, how do we fix these holes? Otherwise I have to take this site down.

]]> By: Greg http://www.pligg.com/blog/181/security-exploit-discovered/#comment-24970 Greg Thu, 31 Jul 2008 04:19:22 +0000 http://www.pligg.com/blog/?p=181#comment-24970 Will there be a beta site for the new version? I would love to help with testing. Will there be a beta site for the new version? I would love to help with testing.

]]> By: Chris http://www.pligg.com/blog/181/security-exploit-discovered/#comment-24956 Chris Wed, 30 Jul 2008 16:05:57 +0000 http://www.pligg.com/blog/?p=181#comment-24956 Thanks for this update. Please let us know when the new version is out. I've subscribed to this comment thread to get updates. Thanks for this update. Please let us know when the new version is out. I’ve subscribed to this comment thread to get updates.

]]>