WordPress Stats Plugin Vulnerability Plugged
I usually don’t mention WordPress vulnerabilities here, but since I use WordPress and the vulnerable plugin I figured I’d mention it (now that I’m patched). The WordPress Stats plugin by Automattic (Andy Skelton ) had a critical SQL injection vulnerability that could allow admin credentials to be stolen. The vulnerability was patched in version 1.1.1 [...]
Site Upgraded to WordPress 2.2
The web site was upgraded to WordPress 2.2 last night. One of the changes made to WordPress 2.2 is that Widgets are now part of the core software and not enabled through a plugin. Widgets can be used on the sidebar and I do use them. The upgrade seems to have screwed up which widgets [...]