[wp-hackers] WP 3.0.1 Multiple Sites -- SQL Injection Vulnerability

Jason Webster jason at intraffic.net
Sat Oct 9 01:11:23 UTC 2010



On 06/10/2010 8:20 PM, Andrew Nacin wrote:
> On Wed, Oct 6, 2010 at 1:59 PM, Chuck Harris<charrisjr at gmail.com>  wrote:
>
>> Hello:
>>
>> Any experience with or insight regarding the following would be helpful.
>>
>> Thank you in advance,
>> Chuck Harris
>
>
> In the future, I would have thought it were obvious, but:
> Don't send potential vulnerabilities over a public mailing list or post it
> to a public place.
>
> It should go through the core team at security at wordpress.org.
>
> See also: http://codex.wordpress.org/FAQ_Security.
>

Lame. If it were actually a security problem, individuals can react wayy faster than the core team 
to fix their sites.



More information about the wp-hackers mailing list