- Impact
- 209
Started getting a lot of reports from my wordpress blog today.
A Chinese IP is requesting the following url:-
blog.petermcdonald.co.uk/wp-content/plugins/wordspew/wordspew-rss.php?id=-998877+UNION+SELECT+0,1,0x6875616B,3,4,5%23
As you can see they are requesting a page for a plugin called wordspew. If you look at the url you will also see they are doing something a bit nefarious. They are trying to add the following to an sql statement:-
id = -998877 UNION SELECT 0,1,0x6875616B,3,4,5#
If you use the wordspew plugin I strongly suggest you delete it as a precaution for the time being until an update is released.
A Chinese IP is requesting the following url:-
blog.petermcdonald.co.uk/wp-content/plugins/wordspew/wordspew-rss.php?id=-998877+UNION+SELECT+0,1,0x6875616B,3,4,5%23
As you can see they are requesting a page for a plugin called wordspew. If you look at the url you will also see they are doing something a bit nefarious. They are trying to add the following to an sql statement:-
id = -998877 UNION SELECT 0,1,0x6875616B,3,4,5#
If you use the wordspew plugin I strongly suggest you delete it as a precaution for the time being until an update is released.
