Not sure how many people use the plugin, or if anyones posted this up yet, but i found this pastebin link to a DOS attack for sites using the BP Random Member Widget Plugin…. Thought some peeps may want to know. There are alternative plugins that do the same thing, might be an idea to switch.
Link: http://pastebin.com/w2HwGYub
Versions affected: 1.0
Date exploit was created: 16-10-2011
-gogger