[wp-trac] [WordPress Trac] #13866: No dupe-checking on wp_users.display_name field causes serious venerability
WordPress Trac
wp-trac at lists.automattic.com
Sat Jun 12 18:01:24 UTC 2010
#13866: No dupe-checking on wp_users.display_name field causes serious venerability
--------------------------+-------------------------------------------------
Reporter: foxly | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Unassigned
Component: Users | Version: 2.9.2
Severity: normal | Keywords: security exploit, spoofing, display_name
--------------------------+-------------------------------------------------
Changes (by wpmuguru):
* priority: highest omg bbq => normal
* severity: critical => normal
Comment:
Demoting severity & criticality until steps to reproduce a vulnerability
are provided.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/13866#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list