[wp-trac] [WordPress Trac] #23289: wp_protect_special_option rejects things it shouldn't
WordPress Trac
noreply at wordpress.org
Fri Jan 25 02:14:15 UTC 2013
#23289: wp_protect_special_option rejects things it shouldn't
-----------------------------+--------------------------
Reporter: agarden | Type: defect (bug)
Status: new | Priority: normal
Milestone: Awaiting Review | Component: General
Version: trunk | Severity: normal
Keywords: has-patch |
-----------------------------+--------------------------
If `wp_protect_special_option` is called with $option == 0 it will die. I
have a client for whom this took down their entire WordPress install. Now,
I assume that some plugin or some such should not have been passing zero
as an option name, so that's another bug. But a buggy plugin should not be
able to take down an entire install so carelessly.
Fix is trivial. Have `in_array` use strict checking. Patch is attached.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/23289>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list