WordPress (Plugin) Security Vulnerability – Absolute Privacy

February 25, 2012 · 12 comments

in WordPress

wordpress logoAbsolute Privacy… 
Not Quite So Private!

WordPress Security Warning

WordPress.org plugin “Absolute Security“, which was found to carry a very dangerous security vulnerability (which would allow your site to be hacked) has now been patched twice and re-admitted to the wp.org repository.

While I have not checked the code, my understanding is that the new version of the plugin is safe to use now (while the old version is definitely not!). Please be sure to upgrade any old versions to the new version.

The plugin was used to make a site all or mostly password protected to read (from what I can tell, as I don’t use it.)

If you have a site that was using the plugin, please be sure to scan your site to see if you’ve picked up any infections. I recommend using Sucuri’s free scanner: http://just-ask-kim.com/recommends/sucuri

Additional information on the (now patched) vulnerability can be found at: http://blog.sucuri.net/2012/02/vulnerability-in-the-absolute-privacy-plugin.html

~ Kim ~
Simple Tech Tips for Marketing

Get The Inside Scoop!
social tripletKeep up with all the latest social marketing changes!


12 comments
Kim Castleberry
Kim Castleberry

I don't know of any commonly used plugin by that name. Can you please provide me with a link to that, Doan?

Kim

marybaum
marybaum

Kimberly Castleberry to the rescue! WordPress (Plugin) Security Vulnerability – Absolute Privacy http://t.co/ffFxAGvz via @AskKim Go now.

Joyce Edwards
Joyce Edwards

Thanks for the tip. Although I don't use that plug in I can always depend on you to keep me updated when it comes to anything about Wordpress.

shyam jos
shyam jos

personally i don't recommend these kinda plugins ,i use antivirus feature in my server back-end

Richard
Richard

Thanks for the update, Kim. I'm actually a bit wary of these third party security plugins these days. It's good to be careful before installing them as they are playing around with yoour site's security.

bowriverblog
bowriverblog

@AskKim Yep great info here Kim, my site was recently compromised but lucky the DB was still intact. Added a couple of plugins as well !!1

Kim Castleberry
Kim Castleberry

Ahh yes, I'm intimately familiar with that one. Apologies. I thought you meant you had one that was separately named "Security Vulnerabilities". My misunderstanding! Thanks, Doan!

Kim