Absolute Privacy… Not Quite So Private!
WordPress Security Warning
WordPress.org plugin “Absolute Security“, which was found to carry a very dangerous security vulnerability (which would allow your site to be hacked) has now been patched twice and re-admitted to the wp.org repository.
While I have not checked the code, my understanding is that the new version of the plugin is safe to use now (while the old version is definitely not!). Please be sure to upgrade any old versions to the new version.
The plugin was used to make a site all or mostly password protected to read (from what I can tell, as I don’t use it.)
If you have a site that was using the plugin, please be sure to scan your site to see if you’ve picked up any infections. I recommend using Sucuri’s free scanner: http://just-ask-kim.com/recommends/sucuri
Additional information on the (now patched) vulnerability can be found at: http://blog.sucuri.net/2012/02/vulnerability-in-the-absolute-privacy-plugin.html