[wp-trac] [WordPress Trac] #38012: Improve data validation in plugin.php
WordPress Trac
noreply at wordpress.org
Fri Sep 9 19:04:23 UTC 2016
#38012: Improve data validation in plugin.php
--------------------------+-----------------------------
Reporter: rpayne7264 | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Plugins | Version: 4.6
Severity: normal | Keywords:
Focuses: |
--------------------------+-----------------------------
function plugin_basename does not do proper data validation of $realdir
variable before attempting to use strpos():
PHP Warning: strpos(): Empty needle in /wp-includes/plugin.php on line
736
--
Ticket URL: <https://core.trac.wordpress.org/ticket/38012>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list