Came home from work today and have started getting a lot of alerts regarding nefarious URL’s being requested on this very blog.
Luckily enough I have SEO egghead’s Firewall PluginThe URL that is being requested is as follows:-
blog.petermcdonald.co.uk/wp-content/plugins/wordspew/wordspew-rss.php?id=-998877+UNION+SELECT+0,1,0×6875616B,3,4,5%23
If you look closely they are directly requesting a php file for the wordspew plugin and trying to feed it the following SQL in the ID variable:-
id = -998877 UNION SELECT 0,1,0×6875616B,3,4,5#
The firewall plugin has jumped on this immediately. Luckily enough I do not use this particular plugin anyway.
If you do use this plugin I would strongly suggest that you delete it (disabling may not be enough). If this command is carried out it could cripple your blog.
Tags: Blog, Egghead, Firewall, Php File, Plugins, security, SEO, Sql, Url, Variable Id, wordpress, Wp