[wp-trac] [WordPress Trac] #17737: Full Path Disclosure
WordPress Trac
wp-trac at lists.automattic.com
Thu Jun 9 22:05:20 UTC 2011
#17737: Full Path Disclosure
--------------------------+------------------------------
Reporter: juliobox | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Query | Version: 3.2
Severity: normal | Resolution:
Keywords: |
--------------------------+------------------------------
Changes (by nacin):
* component: Security => Query
* severity: major => normal
Comment:
The bug here being that we should be checking or forcing data types on a
number of query vars, (such as author, p, post, etc, that only take
integers).
--
Ticket URL: <http://core.trac.wordpress.org/ticket/17737#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list