[wp-trac] [WordPress Trac] #46675: Just found a url hack that will disclose admin log in user name
WordPress Trac
noreply at wordpress.org
Wed Mar 27 16:54:47 UTC 2019
#46675: Just found a url hack that will disclose admin log in user name
---------------------------------------+-----------------------------
Reporter: jeremiah01292 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Keywords:
Focuses: privacy, coding-standards |
---------------------------------------+-----------------------------
Googling this pattern can give access to admin user name email
"/author/[emailaddress] minus the @ [email host name] adding a - [email
host extenstion]"
--
Ticket URL: <https://core.trac.wordpress.org/ticket/46675>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list