Archive for June, 2007
Blog Censorship
BlogSecurity introduces an article by Sarah Turner:
Sarah Turner is a BA Hons in Business Studies and currently works as a Marketing Manager; she has speciliased in the IT security sector for almost 2 years.
"Bloggers are often the only real journalists in countries where the mainstream media is censored or under pressure. Only they provide independent [...]
Common WP Theme Vulnerabilities
heise.de security recently released an advisory regarding a common vulnerability they have found in a number of WordPress themes. BlogSecurity can verify this as it has been working on a similiar project and will release the latest version of wp-scanner later this week which includes some additional theme vulnerability checks as well as some bug [...]
BlogSecurity Standard
Since launching just 2 weeks ago, we have been pleasantly surprised at just how many blog administrators and developers are concerned with the state of their security; let me take this chance to thank them and especially those who have made monetary contributions to the project, it does take alot of our free time to [...]
WordPress Unauthorised Comments Disclosure
Sid from notsosecure.com informed us today of a low risk (yet interesting) vulnerability he has found in WordPress.
An attacker can read comments on posts that have not been moderated. This can be a real security risk if blog admins are using unmoderated comments (comments that have not been made public) to hide sensitive notes regarding [...]
