Wordpress Themes - WP Forum at BFA
Click here to register or to donate.
Auto self-registration is not available here - far too many spammers. This forum has many, many backlinks and because of that there is an intense desire among spammers to drop their links here.

Wordpress Themes - WP Forum at BFA » WordPress Themes » Atahualpa 3 Wordpress theme » New Versions, & Updating »

Injection vulnerability in WP 2.8 and prior - also plugin related

Old Jul 17, 2009, 09:47 PM
1 posts · Jul 2009
Hi all,

I hope this is the right forum to post that. I have read on
that there is a considerable bug in Wordpress that has just been solved with 2.8.1. As the article mentions, there seem to be several pitfalls with allegedly "all" plugins that allow subscribed users to inject probably malicious code.

As I am still finding my way into the software and cannot answer it myself, I thought I'd ask here: Is Atahualpa prone to this bug? Or does it not apply to this theme?

Anway, I already updated my WP to the latest version. On a side note, this plugin ownz tremendously. So far I have been able to accomplish everything I wanted either by using the supplied forms or searching a little in the forums. Really kudos to the author(s) for such a great piece of software and the ongoing help. When I'm more or less done with configuration (and haven't found a hole that sinks my ship), I will certainly donate some money.

Back to the issue at hand: I hope somebody can calm my unrest about the aforementioned vulnerability.

Old Jul 22, 2009, 11:41 AM
Flynn's Avatar
3,768 posts · Oct 2008
Munich, Germany
Those issues are related to core WP files, Atahualpa does not deal with them


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
Thread Thread Starter Forum Replies Last Post
category pages - with just the linked title, author, date of each related post janey73 Atahualpa 3 Wordpress theme 2 Jun 25, 2009 02:11 PM

All times are GMT -6. The time now is 08:32 AM.

Powered by vBulletin® Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.