WordPress Top Commentators Hijack Fix Released
New BloggingTips author Sarah recently noticed a major flaw in the popular Show Commentators Plugin for WordPress.
As Sarah explained last month :
To briefly explain, the plugin creates the top commentators list by counting the number of comments made per name which is easily forged, by accident or on purpose. It then links the name using the last URL given on that name’s comment. So all you need is someone to forge someone else’s name and use a different URL and they get a nice little, usually no followed, link from your site.
Thankfully, Sarah was able to fix it by creating the top commentators list using email addresses instead of names. As she points out, it is very easy to forge a name which is being displayed compared to a hidden email address which is not.
If you use the top commenators plugin I recommend you downloading this fix so that you no cheaters get on your list.
You can download the fix from the link below :
Written by Kevin Muldoon from Blog Themes ClubPosted on April 30th, 2008 and filed under WordPress Plugins
Do not forget to subscribe to our RSS feed for updates
One Response to “WordPress Top Commentators Hijack Fix Released”
Author comments are in a darker gray color for you to easily identify the posts author in the comments
Comments are closed.
Comments are closed since this post is older than 30 days. However, you can continue this discussion in our popular Blogging Forums
Blogging Tips Sponsors
Blogging Tips Newsletter
Sign up to the Blogging Tips Newsletter for Free! What have you got to lose?
I take it someone has notified the original plugin author so that the patch can be incorporated into the source…
db