Utterly Boring dot com

Patch your MovableType or be exploited by spammers

Thanks to Waxy for this link. A CGI script in the default MovableType install (mt-send-entry.cgi) can be exploited by spammers in the same way that old FormMail scripts could. Rename it, if you don't use it, or patch it. More info here.

Posted by Jake on 11/25/03 @ 11:35 PM
Posted in Geekdom | Permalink

1 Trackback

MT Vulnerability from GDay Mate on 11/26/03 @ 05:06 PM:
According to Utterly Boring who points to Zope Newbies who points to the MT Forum there is a vulnerability in one of the MT cgi scripts. I don't normally use this (on my MT blog - it is not a TypePad problem AFAIK) but I have disabled it as per the ins... (Read More)

What are you doing down here? Don't you have something better to do? Like Go Back To The Top of the page, or even see who created this site? This site is © 2001 - 2019 by the Utterly Boring folks at UtterlyBoring.com. Steal my content, as I probably did, too, just link to my site or the original site. Batteries not included. One size fits all. Not for off-road use. Not for internal use. Do not taunt Happy Fun Ball.