[wp-trac] [WordPress Trac] #16778: wordpress is leaking user/blog information during wp_version_check()
WordPress Trac
noreply at wordpress.org
Tue Nov 15 10:32:54 UTC 2016
#16778: wordpress is leaking user/blog information during wp_version_check()
----------------------------+----------------------
Reporter: investici | Owner:
Type: enhancement | Status: closed
Priority: normal | Milestone:
Component: Administration | Version:
Severity: minor | Resolution: invalid
Keywords: has-patch | Focuses:
----------------------------+----------------------
Comment (by MattyRob):
@chriscct7
Thanks for your detailed response.
I'm not sure I'd be the best person to start writing a new 'privacy' page
as 1, I don't have all of the information about what happens to the data
on server end (which is perhaps why I'm so concerned about my privacy) and
2, it would probably be worded in an incredibly negative and potentially
damaging way!
The other concern here is that you suggest that the `http_request_args`
filter can be used for the same purpose, I disagree (but am happy to be
corrected. That filter takes 2 parameters, $r and $url, but only the
former can be amended during that filter call, so where and how can I
amended the private information added to the $url requested? That's what
this patch addresses.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/16778#comment:36>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list