[wp-trac] [WordPress Trac] #8910: Limit the RSS widget from using its own url

Tue Jan 11 21:37:15 UTC 2011

#8910: Limit the RSS widget from using its own url
-------------------------------------------------+-------------------------
 Reporter:  webmaestro                           |       Owner:
     Type:  defect (bug)                         |      Status:  reopened
 Priority:  high                                 |   Milestone:  Future
Component:  Widgets                              |  Release
 Severity:  major                                |     Version:  2.8
 Keywords:  needs-patch, rss, widget, url,       |  Resolution:
  HTTP/1.0, server, loop, feed, recent posts,    |
  archive                                        |
-------------------------------------------------+-------------------------

Comment (by nacin):

 (In [17260]) Disallow a self-reference on RSS widget save, which would DoS
 a site. Checking home/siteurl should cover the vast majority of cases. see
 #8910.

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/8910#comment:13>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software