[wp-trac] Re: [WordPress Trac] #9406: harden the security of the
active_plugins array
WordPress Trac
wp-trac at lists.automattic.com
Thu Apr 2 17:43:39 GMT 2009
#9406: harden the security of the active_plugins array
-------------------------------+--------------------------------------------
Reporter: Denis-de-Bernardy | Owner: ryan
Type: defect (bug) | Status: new
Priority: high | Milestone: 2.7.2
Component: Security | Version:
Severity: major | Keywords: has-patch tested
-------------------------------+--------------------------------------------
Changes (by Denis-de-Bernardy):
* keywords: has-patch => has-patch tested
Comment:
one tiny tweak:
case strlen($plugin) < 4:
seems unneeded based on my testing of your patch -- the substr call
catches that too.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/9406#comment:3>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list