|
Oct
31
2
|
WP HTML Taint Check |
|||||
<? /* if (true) { function check_posts() global $wpdb, $table_prefix; $items = $wpdb->get_results(" SELECT post_title, ID, post_name, post_content FROM {$table_prefix}posts WHERE TRUE ?> Related posts: Code for HTML Auditing <? // +———————————————————————-+ // | HTMLParser | // | Simple HTML Parsing Library | // | Based on Jose Solorzano's Library; his notice is below. | // +———————————————————————-+ // | Portions Copyright (c) 2004-2005 Jaimie Sirovich | // +———————————————————————-+ // | This program is free software; you can redistribute it and/or |... Stop SEO Death By Pagination This post is now (mostly) obsolete and replaced by WordPress... XSS & HTML Injection are Frighteningly Trivial to Find at Harvard.edu This recent article mentions that XSS and HTML injection are... Find HTML Injection Vulnerabilities with Google Code Search I guess I think like a hacker, because I thought... Auditing for HTML Tainting Note: the code for the auditing script is located here....
| ||||||
"2 Wise Comments Banged Out Somewhere On The Internet ..."SEO Egghead by Jaimie Sirovich » Latest WordPress 2.3.1 Apparently Vulnerable To Hackers[...] writing a quick-and-dirty WordPress plugin to scan your blog for the signature of the HTML-tainting. Install it. It will email you with the [...] Peter’s Blog » Blog Archive » Wordpress Vulnerable (2.3.1 and below)[...] has released the plugin as promised which can be viewed HERE. Unfortunately the plugin has not given any clues as to how the hack was achieved. The plugin [...]
|


















