[wp-trac] [WordPress Trac] #10729: Potential code injection risk.
WordPress Trac
wp-trac at lists.automattic.com
Sun Sep 6 08:34:31 UTC 2009
#10729: Potential code injection risk.
--------------------------+-------------------------------------------------
Reporter: hakre | Owner: ryan
Type: defect (bug) | Status: new
Priority: normal | Milestone: 2.9
Component: Security | Version: 2.8.4
Severity: normal | Keywords:
--------------------------+-------------------------------------------------
Comment(by hakre):
I was able to find other places where similar potential code-injections
are possible. Most of them are fixed with the last patch, two of them are
are marked with FIXME todo tags because I was not able to fix them right
now and/or to verify wether or not those are actually dangerous. The
function with the two FIXME tags in it is the most potential one so far as
I can say.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/10729#comment:4>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list