[wp-trac] [WordPress Trac] #48972: Improper handling of page number in URL
WordPress Trac
noreply at wordpress.org
Sat Dec 14 09:38:59 UTC 2019
#48972: Improper handling of page number in URL
-------------------------+-------------------------------------------------
Reporter: hronak | Owner: (none)
Type: defect | Status: new
(bug) |
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 5.3.1
Severity: normal | Keywords: needs-patch reporter-feedback
Focuses: | needs-testing
-------------------------+-------------------------------------------------
If you append numbers in any post/page URL (after a slash) it still
returns a valid HTTP 200 even if there are no pages. The limit is
9223372036854775807 page number.
If you append anything above 9223372036854775807 (like
9223372036854775808) then it automatically redirects to
9223372036854775807.
9223372036854775807 happens to be the limit of a signed 64-bit integer.
Example URLs to test:
1. https://wordpress.org/news/2019/12/wordpress-5-3-1-security-and-
maintenance-release/9223372036854775807
2. https://wordpress.org/news/2019/12/wordpress-5-3-1-security-and-
maintenance-release/9223372036854775808
You can try this with any WordPress based website with any theme. This
issue also happens with WooCommerce product pages. I've tested it with
5.2.x, 5.3, and 5.3.1 but further testing is required to know how many
WordPress versions have the same issue.
Expected result should be an error message (like 404) if the page number
doesn't exist.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/48972>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list