Disqus Wordpress Plugin Flaw Leaves Millions of Blogs Vulnerable to Hackers
2014-07-02, 01:33 PM,
#1
[Image: disqus-wordpress-plugin-exploit-hacking.jpg]

Quote:A Remote code execution (RCE) vulnerability has been discovered in the comment and discussion service, Disqus plugin for the most popular Blogging Platform Wordpress.

While there are more than 70 million websites on the Internet currently running WordPress, about 1.3 million of them use the ‘Disqus Comment System’ Plugin, making it one of the popular plugins of Wordpress for web comments and discussions.

The security team at the security firm Sucuri discovered a critical Remote Code Execution (RCE) flaw while analyzing some custom JSON parser of the Disqus plugin and found that the variable parsing function could allow anyone to execute commands on the server using insecurely coded PHP eval() function.

Continue reading...
Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  Hackers Hid Backdoor In CCleaner Security App With 2 Billion Downloads -- 2.3 Million HawkEye 13 473 2017-09-24, 02:34 AM
Last Post: EnChanter
  Does people really think they have earned millions by checking there emails r00t3d 16 677 2017-07-11, 07:41 PM
Last Post: r00t3d
  Inside a Russian IG BOT Farm with MILLIONS of Accounts! julianthr 10 582 2017-05-20, 01:03 PM
Last Post: AlifDomain
  Need Adult Video Wordpress Theme DGR 3 1,155 2016-11-24, 07:51 PM
Last Post: torothemes
  bullshit money fake "GURU" blogs NEVER TRUST THEM! imonambot 12 1,809 2016-10-28, 06:07 PM
Last Post: scenic101





About Us | Contact Us | CPA Elites | Advertise | Stats | Staff Team

© 2013-2017 CPA Elites Ltd
Enhanced by MyBB and WallBB
Return to top