Someone named Ferruh has a proof-of-concept cross-site request forgery (CSRF) attack against WordPress (HT: DK at BlogSecurity). I’ve tried it out successfully on my own version of WordPress 2.3.3. The scenario is like this: you go to leave a comment on someone’s site, and surreptitiously that (evil) site tricks you into changing your WordPress admin [...]
Recent Comments
- 20个最好的wordpress搜索引擎优化插件 ‹ 站长巴士 on Paged Comments and the SEO Problem: A Solution
- alfred brooks on NPR Interns’ Blog Powered by WordPress
- 20个最好的wordpress搜索引擎优化插件 - 奇夏工作室 on Paged Comments and the SEO Problem: A Solution
- SEO Plugin untuk Wordpress | Anggit Herdian Web Blog on Paged Comments and the SEO Problem: A Solution
- wordpress搜索引擎优化插件 | 米爱网博客 on Paged Comments and the SEO Problem: A Solution
-
RSS Subscription Feeds