[wp-trac] [WordPress Trac] #16778: wordpress is leaking user/blog information during wp_version_check()
WordPress Trac
noreply at wordpress.org
Thu Dec 8 10:41:18 UTC 2016
#16778: wordpress is leaking user/blog information during wp_version_check()
----------------------------+-----------------------
Reporter: investici | Owner:
Type: enhancement | Status: reopened
Priority: normal | Milestone:
Component: Administration | Version:
Severity: minor | Resolution:
Keywords: has-patch | Focuses:
----------------------------+-----------------------
Comment (by DvanKooten):
Replying to [comment:75 MattyRob]:
> Interesting piece of code - however I cannot find anywhere in the
WordPress core files where `do_action( 'wp_version_check' );` gets called.
Can you confirm where and when that hook gets fired?
It's called through WP Cron, the action is scheduled to fire twice a day
in wp-includes/update.php line 685.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/16778#comment:76>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list