[wp-hackers] BugTraq post

Bull3t bull3t at ntlworld.com
Tue Dec 18 20:07:53 GMT 2007


I'm going to go with the idea that he is smoking something.


--------------------------------------------
Bull3t
http://www.bull3t.me.uk/

> -----Original Message-----
> From: wp-hackers-bounces at lists.automattic.com [mailto:wp-hackers-
> bounces at lists.automattic.com] On Behalf Of Aaron Brazell
> Sent: 16 December 2007 02:29
> To: wp-hackers at lists.automattic.com
> Subject: Re: [wp-hackers] BugTraq post
> 
> Matt-
> 
> I saw that earlier today and I agree... if the cookie isn't set, wp-
> admin will redirect to wp-login.php. And if he is able to access wp-
> admin (say with open registration, which is legit), what he can view
> is going to be subject to a cap check. Either he's smoking something
> or he hasn't provided all the info.
> 
> My take.
> --
> Aaron Brazell
> Director of Technology, b5media
> 
> skype: technosailor
> phone: 410-608-6620
> web: http://technosailor.com
> 
> Everything contained in this email is confidential and stuff
> 
> On Dec 15, 2007, at 9:25 PM, Matt Mullenweg wrote:
> 
> > Is anyone able to use this to read drafts? This guy seems confused.
> >
> > http://www.securityfocus.com/archive/1/485160/30/0/threaded
> >
> > --
> > Matt Mullenweg
> > http://photomatt.net | http://wordpress.org
> > http://automattic.com | http://akismet.com
> > _______________________________________________
> > wp-hackers mailing list
> > wp-hackers at lists.automattic.com
> > http://lists.automattic.com/mailman/listinfo/wp-hackers
> 
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers
> 
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.5.503 / Virus Database: 269.17.2/1185 - Release Date:
15/12/2007
> 12:00
> 

No virus found in this outgoing message.
Checked by AVG Free Edition. 
Version: 7.5.503 / Virus Database: 269.17.4/1188 - Release Date: 17/12/2007
14:13
 



More information about the wp-hackers mailing list