[wp-trac] [WordPress Trac] #10729: Potential code injection risk.
WordPress Trac
wp-trac at lists.automattic.com
Sat Sep 5 17:14:27 UTC 2009
#10729: Potential code injection risk.
--------------------------+-------------------------------------------------
Reporter: hakre | Owner: ryan
Type: defect (bug) | Status: new
Priority: normal | Milestone: Unassigned
Component: Security | Version: 2.8.4
Severity: normal | Keywords:
--------------------------+-------------------------------------------------
eval-compareable code injection possible with this code signature:
add_action('admin_notices', create_function( '', "echo '$message';" ) );
found in wp-admin/post.php on line ~150.
inject squence "\'; PAYLOAD-PHP-CODE //" as $message, done.
code will be executed when admin_notices is fired.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/10729>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list