[wp-meta] [Making WordPress.org] #1088: WordPressCookies-0.1 doesn't deal with bad cookies

Making WordPress.org noreply at wordpress.org
Fri Jun 19 02:30:56 UTC 2015

#1088: WordPressCookies-0.1 doesn't deal with bad cookies
Reporter:  dd32    |      Owner:
    Type:  defect  |     Status:  new
Priority:  low     |  Component:  Trac
Keywords:          |
 I'm not sure how it happened, but my `wporg_logged_in` cookie became
 invalid, which blocked me from accessing Trac.

 Trac was throwing up the following errors:
 ProgrammingError: (1064, "You have an error in your SQL syntax; check the
 manual that corresponds to your MySQL server version for the right syntax
 to use near '%s' at line 1")

 which was coming from
 File "/usr/local/lib/python2.7/dist-
 packages/WordPressCookies-0.1-py2.7.egg/wpcookies/auth.py", line 84, in
     cursor.execute("SELECT user_pass, user_email FROM " +
 conn.quote(table) + " WHERE user_login = %s", username)

 Upon inspecting my cookies, they were in the form of:
 Note, that they specifically didn't include my username (once again, no
 idea how).

 I guess the WordPressCookies Trac package needs updating to break early
 when the cookie exists, but has a blank username field.
 I've seen similar reports to this in the past, and clearing cookies has
 always been the answer. Where the cookie gets set without a username is a
 question I don't think will be easy to find :)

 Note: I don't know where the source of the WordPressCookies package is
 from, or if it's open-sourced.

Ticket URL: <https://meta.trac.wordpress.org/ticket/1088>
Making WordPress.org <https://meta.trac.wordpress.org/>
Making WordPress.org

More information about the wp-meta mailing list