W3 Total Cache Exploit



That plugin is total dog shit. Fuck those millions of shmucks using it. Best part is they never update their sites so they can get rapped for years.
 
Fuckin hell, I knew I was going to end up screwing myself over installing that plugin without doing my due diligence. Guess i have decent instincts because i just knew there had to be some way to exploit it. Good thing I upgraded.
 
Thanks for the heads up. I was fiddling with it a few days ago for a particular site that uses a lot of feeds and was uber slow. Good thing I didn't stick with it.
 
This requires -indexes and insecure directories... if you have either of those going on with your webserver, perhaps now is the time to remedy that.

Nothing to see here if your server is even remotely "hardened".
 
that plugin was the first way that I ever penalyzed my site

canocotilized the fuck outta my pages 3 days later shit was page 50+
 
Why won't WordPress devs create a secure CACHE option as default? Wouldn't all hosts rejoice? I don't understand why they continue to rely on plugins to do this.