[wp-trac] [WordPress Trac] #52169: REST API - User route security issue
WordPress Trac
noreply at wordpress.org
Thu Dec 24 05:40:57 UTC 2020
#52169: REST API - User route security issue
--------------------------+-----------------------------
Reporter: rajanit2000 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: REST API | Version: 5.6
Severity: normal | Keywords:
Focuses: rest-api |
--------------------------+-----------------------------
Hi Team,
I am not sure this is an issue, But someone can guess their usernames
(mostly slug).
at least we can hide the slug info in the return JSON values.
https://developer.wordpress.org/wp-json/wp/v2/users
--
Ticket URL: <https://core.trac.wordpress.org/ticket/52169>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list