[wp-trac] Re: [WordPress Trac] #3673: Theme editing loading css file of when select php file of different name

WordPress Trac wp-trac at lists.automattic.com
Mon Mar 12 05:27:10 GMT 2007


#3673: Theme editing loading css file of when select php file of different name
-----------------------+----------------------------------------------------
 Reporter:  AndyBeard  |        Owner:  anonymous
     Type:  defect     |       Status:  reopened 
 Priority:  normal     |    Milestone:  2.2      
Component:  General    |      Version:  2.1.2    
 Severity:  normal     |   Resolution:           
 Keywords:             |  
-----------------------+----------------------------------------------------
Comment (by markjaquith):

 Perhaps there is some sort of extra PHP security layer zero'ing out
 {{{$file}}} which would explain ngruloos' solution.  It does sound like a
 query var that could lead to register_globals type security breaches.

 Our code that populates {{{$file}}} only does so if {{{$file}}} isn't
 already set... so if something else were setting it, that could be the
 problem.

-- 
Ticket URL: <http://trac.wordpress.org/ticket/3673#comment:10>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list