Login

Plugin Vulnerabilities

A service to protect your site against vulnerabilities in WordPress plugins.

Login

Tag Archives: Libravatar Replace

If you are looking to find out about vulnerabilities in Libravatar Replace or another plugin you use or are looking to use, you won't find most of our data on our blog. Instead you should sign up for our service so that you get access to all of the data we have gathered, which is much more data than other sources out there will provide you. You can start using the service for free when you sign up now.

If you have a hacked website then trying to find vulnerabilities in the plugins you use is not the way to determine how the website has been backed, instead the evidence from the hack and the relevant logging should be scrutinized. Our hack cleanup service for WordPress websites includes doing that, as well as a lifetime subscription to this service.

If you are a paying customer of our service, you also have the ability to suggest/vote to have the plugin get a security review from us if it is in the Plugin Directory. You can also order a security review of the plugin done by us.

23 Aug

Just Because a Hacker is Requesting a WordPress Plugin’s File Doesn’t Mean There is a Vulnerability in It

One of the ways that we keep track of vulnerabilities in WordPress plugins is by monitoring what look attempts at hackers request for files in plugins on our websites and in some third-party data. One of the problems we have seen recently in others looking at similar data is that they don’t do proper due diligence before making claims based on that data. A couple of weeks ago we looked at how Wordfence was falsely making people think there has been a vulnerability in very popular plugin. While looking into some possibly malicious requests recently we found something similar happening with the much less popular pluginĀ Libravatar Replace. A couple of days ago new thread was created for the plugin on the WordPress Support Forum that reads:

Hey, I do not use this plugin but my website was scanned by a UK IP trying to locate:
http://[redacted]/wp-content/plugins/libravatar-replace/libravatar-replace.php [Read more]