Theres is a major security issue with this plugin the plugin uses the name of the commenter to enable the link go to any blog with the plugin and put the top commenters name as your name when you comment then use your link and email the top commenter will then have your link im ashamed to say ive been using this for months to get thousands of links but feel i should come clean now Anyone who doesnt understand send me thier blog link if they have the plugin and il show them
well it is a slight security issue i believe as it clearly compromises the site lol i should have put this in an ebook and sold it instead of trying to be helpful
I don't know what top commentator plugin you are talking about, but the ones I have seen the site owner gets to set how it associates comments with their author. You can choose email, name, url, etc. and most of the time, if someone comments using the same email but not url, it still shows up as the previous url.
Kewl. Now we can go through all of the 'SEO Freddy' names and point them at a casino site. While not a security issue, it is a nasty little loophole in the plugin. You can bring a blog ranking down by linking to some very bad neighborhoods.
Apparantly there are different varities of the Show Top Commentator plugin. The original (non-widgetized) version is here: http://www.pfadvice.com/wordpress-plugins/show-top-commentators/ There are at least 4 widgetized versions. Any of which, may not be up to date with the original. Per the STC Change Log: So I think PixelAdd may have stumbled upon either a widgetized plugin variety that has never been updated or they just are plain lazy and have not updated yet.
yeh thats the way to fix it i have found over 2000 blogs with the security bug so thats alot of backlinks
Well there is a security issue if they are using it anyway, just because that plugin isn't compatible with new versions of WP.