Plugin Jetpack ini telah menjadi primadona para blogger WordPress. Kemampuannya untuk membuat blog instalan biasa menjadi seperti WordPress.com membuatnya banyak dipakai oleh para blogger. Nah, kemarin, telah ditemukan lubang keamanan di plugin ini yang memungkinkan peretas untuk melakukan SQL Injection.
Untuk itu, silahkan pasang pengaman sementara menunggu update-nya muncul. Saya sarankan menggunakan WP Firewall 2 yang cukup efektif menangkal SQL Injection.
Memang tidak mudah memanfaatkan lubang keamanan ini, tapi berjaga-jaga juga tidak ada salahnya kan?
36 replies on “WordPress Jetpack plugin SQL Injection Vulnerability”
Terima kasih infonya.
Komunitas peretas memang kadang menjengkelkan.
Pantesan setelah saya pasang plugin ini beberapa hari kemudian saya dpt info lwt firewall sebanyak kurang lebih 35 email ttg adanya gejala hancking ke blog saya…
Thanks utk infonya…:D
begitu ya? waduh perlu segera pasang nih … thx!
trims infonya. langsung ke tkp aja. eh, WP Firewall 2 itu plug in ya …? 🙂
untung saya ga pakai! jadi aman…
Terimakasih infonya yang sangat bermanfaat 🙂
untungnya saya tidak memakai plugin tersebut…
Saya berusaha meminimalkan pemasangan plugin.
Tapi WP-Firewall wajib, meski kadang saya sendiri sering diblok…..O o
Lha kalo yang punya blog sendiri diblok, loginnya gimana ya.
saya pakai plugin ini juga, tapi udah install firewall dari dulu 🙂
Kebetulan saya baru belajar WP, jadi belum tahu banyak soal plugin ini 😀
terimakasih
terima kasih mas, tuk sharenya sangat penting banget. saya segera pasang plugin firewire.
memang kita dituntut untuk bisa mengamankan blog kita 😀
Makasih-makasih, stay tune terus ah disini…
_wordpress.or.id/xmlrpc.php
itu gimana..
Terima kasih telah berbagi info ini.
Mas Lutfi kalau boleh saya mau tanya. Beberapa hari lalu saya install plugin jetpack ini dan plugin auto excerpt everywhere. Memang sih bagus plug in tersebut. Tapi setelah saya ganti theme yang baru kok ada yang membuat janggal di homepage saya readmore nya kayak ada 2 gitu. Satunya bentuknya gini […] dan dibawahnya lagi ada tulisan Continued reading (bawaan theme). Terus saya coba hapus plugin auto excerpt everywhere. Namun blog saya tampilan homepagenya tetdp tidak berubah. Bgmna mas ya cara menghilangkan tanda […] dihomepage saya. Saya harus masuk kemana untuk menghilangkan tanda diatas. Makasih sebelumnya, maaf merepotkan.
info yang mantab mas.. saya baru belajar wordpress soalnya. mau langsung pasang juga plugin ini…makasih.
Yups pak,, terima kasih banyak atas arahannya
salam sukses..
Wah ini info menarik buat sobat yang menggunakan wp
nice share 🙂
saya instal jetpack tapi kalau mau tidak dipakai tidak bisa di deactivated ( bagaimana caranya ya mas ?) karna banyak problem di web saya seperti : vissual editor jadi hilang dan menu untuk mengatur wiget juga hilang tuh..
Bantu ya mas kenapa /
owh,,pantes dulu sempet ke hack.. ternyata dari ini to..
setelah otak-atik theme lupa nggak aktifin lagi wp firewall nya.. 😀
kalau blog kita terkena SQL Injection dampaknya apa ya??
ciri-cirinya bagaimana tuh?
wah..baru tau saya sob soal jetpack..makasih infonya
I simply want to mention I am just very new to weblog and definitely liked this page. Probably I’m likely to bookmark your site . You surely have impressive article content. Cheers for sharing with us your webpage.
I’d have to verify with you here. Which isn’t one thing I usually do! I get pleasure from reading a submit that may make individuals think. Additionally, thanks for allowing me to remark!
Simply want to say your article is as amazing. The clarity in your post is simply great and i could assume you’re an expert on this subject. Fine with your permission allow me to grab your feed to keep updated with forthcoming post. Thanks a million and please continue the gratifying work.
Greetings! Very helpful advice in this particular post! It is the little changes that will make the greatest changes. Many thanks for sharing!
Yet another giant gaffe that Wal-Mart produced would be to stray removed from its major id to be a market that include profound rate reductions
Excellent examine, I in simple terms approved this exacting against a pristine colleague who was simply responsibility somewhat research in that. With they just purchased me lunchtime because I ran transversely it regarding him grin Consequently okay, i’ll rephrase that: Thanks pertaining to lunch! Whenever you’ve an victorious government you’ve got a dictatorship. by Bother Azines Truman.
Hello just wanted to give you a quick heads up. The text in your post seem to be running off the screen in Opera. I’m not sure if this is a format issue or something to do with internet browser compatibility but I thought I’d post to let you know. The style and design look great though! Hope you get the issue resolved soon. Thanks
Unquestionably believe that which you stated. Your favorite justification seemed to be on the net the simplest thing to be aware of. I say to you, I certainly get irked while people consider worries that they just don’t know about. You managed to hit the nail upon the top as well as defined out the whole thing without having side-effects , people can take a signal. Will likely be back to get more. Thanks
You really make it seem so easy with your presentation but I find this matter to be actually something that I think I would never understand. It seems too complicated and extremely broad for me. I am looking forward for your next post, I’ll try to get the hang of it!
Greetings! Very helpful advice within this article! It is the little changes that will make the most significant changes. Thanks for sharing!
*You should take part in a contest for one of the best blogs on the webclash of clans hack I will recommend this site!
How can I add a hit counter to my blogger blog?
The Zune concentrates on being a Portable Media Player. Not a web browser. Not a game machine. Maybe in the future it’ll do even better in those areas, but for now it’s a fantastic way to organize and listen to your music and videos, and is without peer in that regard. The iPod’s strengths are its web browsing and apps. If those sound more compelling, perhaps it is your best choice.