Comments on: WordPress Plugin Related Sites 2.1 Blind SQL Injection Vulnerability

By: DK

DK — Sat, 04 Jul 2009 19:41:42 +0000

Thanks for feedback chaps.

By: Blog Traffic Exchange

Blog Traffic Exchange — Sat, 04 Jul 2009 19:29:10 +0000

For what it is worth I fixed this on 6/30 with 2.2.1 as soon as I realized.

EVERYONE SHOULD RUN 2.2.1 nothing earlier.

You should consider running BTE on this blog.

By: MustLive

MustLive — Wed, 01 Jul 2009 17:54:14 +0000

David This exploit for Related Sites plugin for WordPress is not working, because there is no mentioned SQL Injection vulnerability in it. As I wrote at my site (http://websecurity.com.ua/3281/). And in comments to my post I wrote in details about why this vulnerability is not working to author of this exploit.