[wp-trac] [WordPress Trac] #50023: Facilitating the transparent editing of user comments by providing sane core defaults

WordPress Trac noreply at wordpress.org
Tue Apr 28 17:28:45 UTC 2020


#50023: Facilitating the transparent editing of user comments by providing sane
core defaults
----------------------------------+------------------------------
 Reporter:  marciancarutasu       |       Owner:  (none)
     Type:  defect (bug)          |      Status:  reopened
 Priority:  normal                |   Milestone:  Awaiting Review
Component:  Comments              |     Version:  5.4
 Severity:  major                 |  Resolution:
 Keywords:  needs-privacy-review  |     Focuses:  privacy
----------------------------------+------------------------------

Comment (by marciancarutasu):

 I am not technical enough to check this form https://laurabirsan.ro/wp-
 content/themes/blankslate/img/screenshot.png
 If that Update request is made on marciancarutasu at gmail.com's behalf it
 could lead to a security flaw as because that's a PUT/UPDATE request on a
 form. (a dumb theory but people here are smarter than me).

 Lovely community.

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/50023#comment:18>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list