[wp-trac] [WordPress Trac] #46898: WSOD Protection: Finalize email language

WordPress Trac noreply at wordpress.org
Thu Apr 25 18:20:03 UTC 2019

#46898: WSOD Protection: Finalize email language
 Reporter:  TimothyBlynJacobs  |       Owner:  SergeyBiryukov
     Type:  defect (bug)       |      Status:  closed
 Priority:  normal             |   Milestone:  5.2
Component:  Administration     |     Version:  trunk
 Severity:  normal             |  Resolution:  fixed
 Keywords:  servehappy         |     Focuses:

Comment (by WFMattR):

 Where the email body says "Next, visit the page where the error was caught
 (http:// ...)", is there any concern that inexperienced users may click
 URLs that could be dangerous?

 46898.6.alt.diff uses `home_url( $_SERVER['REQUEST_URI'] )`, which would
 include any query string parameters. An attacker could potentially trigger
 a fatal error with a URL that is also dangerous for a logged-in admin to
 visit. Although there are significant limitations (including triggering a
 fatal error and using a malicious query string parameter in a single
 request, that's processed before the fatal error), in some plugins/themes,
 this could let an attacker send a malicious link to an admin inside a
 legitimate email message, without having to know their address.

Ticket URL: <https://core.trac.wordpress.org/ticket/46898#comment:25>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list