Comments on: Security Issue with Default Pligg Captcha

By: Eric Heikkinen

Eric Heikkinen — Mon, 01 Sep 2008 14:58:28 +0000

To my knowledge the auto-pligg software was only generating mass amounts of users to add stories and then promote them. They may have also been logging into admin accounts for sites that were too lazy to change the default admin user account password.

By: Ryan

Ryan — Mon, 01 Sep 2008 09:55:00 +0000

Hi, I am new to Pligg. When you saw auto-pligg is bypassing captcha, are you just talking about users or is this s/w gaining control of admin panel also? Please clarify. It was not clear from your post. Thanks.

By: en3r0

en3r0 — Sat, 16 Aug 2008 19:30:22 +0000

jkjunkfilter, do not wait to update, 9.9.5 is very important.

By: jkjunkfilter

jkjunkfilter — Thu, 07 Aug 2008 00:48:05 +0000

When do you anticipate 9.9.6 being available? I’ve not updated to 9.9.5 yet… should I just wait?

By: jakie

jakie — Wed, 06 Aug 2008 00:50:42 +0000

I got the similar problem, for the time being i have had my administration folder changed to 440 and disable all the SSH access…So far, my site alive…

By: Sam

Sam — Tue, 05 Aug 2008 21:31:59 +0000

I switched to white hat captcha and my site got hacked again!

By: Patrick

Patrick — Tue, 05 Aug 2008 11:45:18 +0000

After that I Get Module Error #1 i, am not sure or it was before?