| Security vulnerability in BackUpWordPress | WordPress Designpraxis

Security vulnerability in BackUpWordPress

November 1st, 2007

Today an exploit for BackUpWordPress has been published on http://www.milw0rm.com. It is a Remote File Inclusion Vulnerability and affects all versions of BackUpWordPress. Until I am able to release a security fix for it, please deactivate the plugin.

I am working on a security fix and will release it asap.

Thanks to iKArus and mike for the information!

— Update —

Ony WordPress installations on hosts which allow for

register_globals = on
allow_url_fopen = on

in their php.ini settings are affected. Use the Phpinfo plugin to find out if your WordPress website is at risk.

Posted by Roland Rust

File under: Wordpress Plugins

This entry was posted on Thursday, November 1st, 2007 at 8:34 pm and is filed under Wordpress Plugins.
You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “Security vulnerability in BackUpWordPress”

Pingback: BackUpWordPress Security Release | WordPress Designpraxis November 1st, 2007 at 10:45 pm
Pingback: BackUpWordPress Security Release November 1st, 2007 at 10:58 pm

Leave a Reply

See also:

Find Us in dutch language (January 13th, 2008)
Plugins in action: Mini-Slides (November 19th, 2007)
Demo Mode 1.2 released (November 18th, 2007)
Plugins in action: Mini-Slides on timbuktoons.tv (November 17th, 2007)
Demo Mode 1.1 released (November 9th, 2007)

Plugins in action: Mini-Slides

Turakraft uses Mini-Slides.

Plugins in action: Mini-Slides on timbuktoons.tv

Timbuktoons uses the Mini-Slides plugin.

This time it's Facebook

As being advised I did my Facebook page today ;)

Plugins in action: Find Us

KGALEWOOD, the Botswana Travel Community Podcast Channel uses Find Us.

Close

Social Web
E-mail