[wp-trac] Re: [WordPress Trac] #2964: Manage > Files may give
access to password protected folders
WordPress Trac
wp-trac at lists.automattic.com
Sat Jul 22 21:37:30 GMT 2006
#2964: Manage > Files may give access to password protected folders
----------------------+-----------------------------------------------------
Reporter: PozHonks | Owner: anonymous
Type: defect | Status: closed
Priority: normal | Milestone: 2.0.4
Component: Security | Version: 2.0.3
Severity: normal | Resolution: invalid
Keywords: |
----------------------+-----------------------------------------------------
Comment (by skeltoac):
Your concern is valid enough: grabbing your plaintext password essentially
gives the attacker access to everything WordPress can do. However, there
are plenty of other ways an admin can gain full system access. They can
upload PHP, for example.
If you don't want WP to have access to certain files, change the file
system to prevent it.
--
Ticket URL: <http://trac.wordpress.org/ticket/2964>
WordPress Trac <http://wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list