[wp-trac] [WordPress Trac] #50023: major core flaw in comments system found today 28 April 2020 16:00 GMT +3

WordPress Trac noreply at wordpress.org
Tue Apr 28 16:43:45 UTC 2020


#50023: major core flaw in comments system found today 28 April 2020 16:00 GMT +3
-----------------------------+------------------------------
 Reporter:  marciancarutasu  |       Owner:  (none)
     Type:  defect (bug)     |      Status:  closed
 Priority:  normal           |   Milestone:  Awaiting Review
Component:  Comments         |     Version:
 Severity:  major            |  Resolution:  worksforme
 Keywords:                   |     Focuses:  privacy
-----------------------------+------------------------------

Comment (by marciancarutasu):

 But where should I leave this complaint?

 I believe it is a big flaw, hear me out. I totally agree with you, all
 comments have to be moderated, approved or disapproved.
 Another example: I have two pages on my site. A random non-registered user
 can randomly see a topic and leave a bad comment "I do not like your
 post."
 Wordpress currently gives me to ability to edit that comment, "I do not
 like your post" becomes "I love your post." on your behalf, without your
 consent, without any form of report or notice and use it as a testimonial
 on my second page.

 So if my second page hits 100mil views a day, 100mil people can see how
 much I personally love your post, but in fact I HATE it, and I wouldn't
 even see that's possible, I am not registered on your website, I just left
 a comment.

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/50023#comment:14>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list