[wp-trac] [WordPress Trac] #36806: XML-RPC Hack
WordPress Trac
noreply at wordpress.org
Sat May 21 01:14:14 UTC 2016
#36806: XML-RPC Hack
--------------------------+------------------------
Reporter: xathras | Owner:
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: General | Version: 4.5.2
Severity: normal | Resolution: duplicate
Keywords: | Focuses:
--------------------------+------------------------
Changes (by dd32):
* status: new => closed
* resolution: => duplicate
* milestone: Awaiting Review =>
Comment:
A DOS (Denial of Service) against `xml-rpc.php` is no different to one
against the homepage or `wp-login.php`, preventing either is out of scope
for WordPress, caching & security plugins often attempt to cover this
well, but ultimately it's a issue that needs to be handled at the server
level.
See #35532, #24193, and many other similar tickets
--
Ticket URL: <https://core.trac.wordpress.org/ticket/36806#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list