Unmoderated Comments With JavaScript References

We have seen reports from several Bloggers that anonymous posters are making unmoderated comments to their blogs, containing a JavaScript reference, which redirects the reader to another web site. Right now, the reference, and the redirection, appears to be used for pumping up the reputation in individual quotes in QDB.com, but it doesn't require a lot of imagination to see how versatile this vulnerability could be in the long run.

Start by immediately moderating all blog comments, until this vulnerability is fixed.

>> Blogger Employee says

I pass it along (again) and we'll see if we can do anything about this.

>> (Update 7/6 10:00): Blogger Employee says

We made some changes to address the vulnerability issue (yesterday) so this should no longer be a problem.

>> Forum thread links: bX-*00055

>> Copy this tag: bX-*00055

>> Top

What's The URL Of My Blog?

We see the plea for help, periodically I need the URL of my blog, so I can give it to my friends. Help! Who's buried in Grant's Tomb, after all? No Chuck, be polite. OK, OK. The title of this blog is "The Real Blogger Status", and the title of this post is "What's The URL Of My Blog?".

Add A Custom Redirect, If You Change A Post URL

When you rename a blog, the most that you can do, to keep the old URL useful, is to setup a stub post , with a clickable link to the new URL. Yo! The blog is now at xxxxxxx.blogspot.com!! Blogger forbids gateway blogs, and similar blog to blog redirections . When you rename a post, you can setup a custom redirect - and automatically redirect your readers to the post, under its new URL. You should take advantage of this option, if you change a post URL.

Adding A Link To Your Blog Post

Occasionally, you see a very odd, cryptic complaint I just added a link in my blog, but the link vanished! No, it wasn't your imagination.

The Real Blogger Status

Search This Blog