Subscribe2 Hijacked | WordPress.org

Resolved jphipps
(@jphipps)

13 years, 2 months ago

Using 8.5 of Subscribe2. Apparently, the subscription setup has been hijacked and used to forward thousands of emails, ending up getting my server blacklisted. Anyone aware of the hole? Or a workaround?

http://wordpress.org/extend/plugins/subscribe2/

Viewing 1 replies (of 1 total)

Matt Robinson
(@mattyrob)

13 years, 2 months ago

@jphipps,

I’ve never been shown a working exploit of the Subscribe2 code that would allow this. Can you or your hosting provider provider give any additional details?

Viewing 1 replies (of 1 total)

The topic ‘Subscribe2 Hijacked’ is closed to new replies.

1 reply
2 participants
Last reply from: Matt Robinson
Last activity: 13 years, 2 months ago
Status: resolved