WebApp Sec: Re: Wordpress Remote Exploit

WebApp Sec mailing list archives

Re: Wordpress Remote Exploit - W3 Total Cache

From: "Jason A. Donenfeld" <Jason () zx2c4 com>
Date: Mon, 24 Dec 2012 13:12:42 +0100

On Mon, Dec 24, 2012 at 7:39 AM, Jason A. Donenfeld <Jason () zx2c4 com> wrote:

hashes. A simple google search of
"inurl:wp-content/plugins/w3tc/dbcache" and maybe some other magic


An astute reader writes to me privately that the /plugins/ part of
that googledork isn't correct, and that the best way to search is
actually:

inurl:wp-content/w3tc



This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! 
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

By Date By Thread

Current thread:

Wordpress Remote Exploit - W3 Total Cache Jason A. Donenfeld (Dec 24)
- Re: Wordpress Remote Exploit - W3 Total Cache Jason A. Donenfeld (Dec 24)
- Re: Wordpress Remote Exploit - W3 Total Cache Jason A. Donenfeld (Dec 24)