wordpress.com, first security problem found

Ok, what some people already wondered seems to happen. Although I did not find the flaw by myself it seems this blog is hosted with a widget that has a security problem. For now I disabled the widget but it does worry me.

WordPress.com offers a widget to show what users are clicking on (outside/inside links from your blog). This morning I found that it showed links to some evil medical sites and posted about it at the forum. The links are not posted on my site but it seems the blog spammers found a way to bypass the module.

Some 12 hours after that nobody seems to pay attention, not even on irc. I sure hope I do not need to switch back to blogger.com.

Tagged: , ,

One thought on “wordpress.com, first security problem found

  1. Sheri December 8, 2009 at 9:20 pm Reply

    We’re paying attention, and we do appreciate your reports in irc and at http://en.support.wordpress.com/contact/ We’ve removed several of the bad links, and we’ll continue to work on this issue and watch out for new ones!

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: