[wp-trac] [WordPress Trac] #11959: Value Truncation Still Unchecked in registration.php
WordPress Trac
wp-trac at lists.automattic.com
Wed Jan 20 22:59:51 UTC 2010
#11959: Value Truncation Still Unchecked in registration.php
--------------------------+-------------------------------------------------
Reporter: miqrogroove | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: 2.9.2
Component: Users | Version:
Severity: normal | Keywords:
--------------------------+-------------------------------------------------
Functions such as username_exists() fail to perform sanity checks against
the storage schema. As a result, it is possible to register multiple
users with the same username, if the length is greater than or equal to
the username field size. Only the first user can login, however anyone
re-registering that username can impersonate the first user to reset their
password.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/11959>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list