Lester Chan's Website » wp-stats

Lester Chan's Website » wp-stats http://lesterchan.net Lester Chan's Website | lesterchan.net Fri, 10 Feb 2012 01:04:33 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 WP-Stats SQL Injection Vulnerability http://lesterchan.net/blog/2006/01/18/wp-stats-sql-injection-vulnerability/ http://lesterchan.net/blog/2006/01/18/wp-stats-sql-injection-vulnerability/#comments Tue, 17 Jan 2006 16:48:28 +0000 Lester Chan http://www.lesterchan.net/blogs/archives/2006/01/18/wp-stats-sql-injection-vulnerability/ escape($string); Please download the latest version of WP-Stats NOW, WP-Stats 2.01 Sorry about it.]]> There is a SQL Injection Vulnerability in wp-stats.php as stated in http://secunia.com/advisories/18471/

I have fixed the exploit by adding $wpdb->escape($string);

Please download the latest version of WP-Stats NOW, WP-Stats 2.01

Sorry about it.

]]> http://lesterchan.net/blog/2006/01/18/wp-stats-sql-injection-vulnerability/feed/ 2