Just wanted to give everyone a heads up that I am going to drop Zoints from my forums. Not enough people use it from what I can see, and it has a huge security leak built into it that has allowed these forums to be hacked twice.
If you are currently using it to blog or anything, please copy anything that you want to keep a record of over the next few days. I will probably drop it in about a week.
Paul Kemp from Zoints here. I'm sorry to hear that the plugin didn't work out for you.
More importantly, if you've discovered a security risk in our product, I'd really appreciate any additional information you can provide so that we can eliminate that risk for our other users! Of course, it's not something that should be posted here, as the last thing we want is for an unpatched security issue to be posted publicly.
If possible, can you take a moment to either email me at paul.kemp@zoints.com with more info, or to make a post in our Feeback and Suggestions forum (your posts there would only be viewable by the Zoints team) here: Feedback and Suggestions - Zoints Network
I'll have my web guys send you whatever they have. Thankfully they were able to restore the forum without any data loss, but it was really frustrating to run into some hacker kid's splash page from some foreign country informing me that I had been hacked.
I liked the idea of Zoints. I'm not sure why it never really took off with this crowd. Seems like a good product though. The security issue is the biggest reason to disable it for me.
I know this probably isn't a huge priority for you, since you're removing the plugin, but anything that's a security risk for our members is a high priority for us. I don't mean to be irritating, but I'd really appreciate any additional info you can provide regarding this issue!!!
I still haven't gotten an email regarding this. I hate to keep beating a dead horse, but can you give me any details as to the nature of the security issue? I'm sure you can understand why this information is important to us and our other users
Perhaps there was a misunderstanding here? Jean-Paul initially posted that there is a security leak that allowed the site to be hacked. If that's the case, it's obviously very important to us to locate and fix that, as the last thing we want is for our software to be responsible for that sort of thing!!!
I read through that thread you linked, and I didn't see any discussion of that type of problem - just confusion about what Zoints is and how it works...
I missed the "hacked" part of the initial post. I'm curious, too. Sorry for the confusion.
At one point, there was concern about "privacy issues." I misunderstood.
I would PM JP directly. Maybe he can put you in touch with those in the know. You probably don't want it posted here in the open until it's figured out.
Sorry I haven't gotten the info you need yet Paul. The guys who manage my site have been extremely busy.
PM Susie blue on this forum... She's the one who fixed the problem. Also LordGreg... He's my main site manager. The PM function will send them an email and maybe they can share that data with you.
I really hope that this was a miscommunication regarding Zoints and that there isn't a security hole in it, but it's important for me to verify either way. Can you follow up with anyone, or suggest any other channels of communication for me?
ZOINTS!
Linear Mode
