[wp-hackers] Wordpress File Inclusion
skeltoac at gmail.com
Tue Nov 14 06:36:47 GMT 2006
On 11/13/06, Dougal Campbell <dougal at gunters.org> wrote:
> Yeah, I can't see any way to exploit anything here unless a plugin or
> theme is injecting a 'file' value into wp_query. Should we consider
> setting an extract type and/or prefix, just to lessen the possibility
> that a plugin or theme could dirty the variable space?
The URL provided in the example is not a valid exploit. IT DOES NOT
WORK. (Repeating for those that didn't get it already. Sorry.)
Setting an extract type would be good.
In case somebody missed it, this is not a security hole. The original
reporter was wrong.
More information about the wp-hackers