[wp-trac] Re: [WordPress Trac] #9750: setup-config.php is tainted
by request data
WordPress Trac
wp-trac at lists.automattic.com
Fri May 8 12:50:59 GMT 2009
#9750: setup-config.php is tainted by request data
--------------------------+-------------------------------------------------
Reporter: hakre | Owner: ryan
Type: defect (bug) | Status: new
Priority: lowest | Milestone: 2.8
Component: Security | Version: 2.8
Severity: minor | Keywords: has-patch 2nd-opinion
--------------------------+-------------------------------------------------
Changes (by hakre):
* priority: normal => lowest
* severity: normal => minor
Comment:
yeah looks quite wired. think so it must be related to the webserver maybe
but this is cgi so really the webserver? Apache 1.3.34 that is.
In the certain case I'm aware of, it is possibible to manipulate the path
of files to be included. maybe ony the relative part. if inclusion is not
possible script execution stops with a fatal error.
i do not rate this critical.
for overfall strictness it can make sense to include/require with CONSTs
as it is done in other locations of the code. this does even prevent this
pseudo (?) bug by doing something sensefull.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/9750#comment:7>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list