[wp-trac] [WordPress Trac] #50179: all HTTP methods allowed on /login
WordPress Trac
noreply at wordpress.org
Fri May 15 15:40:31 UTC 2020
#50179: all HTTP methods allowed on /login
--------------------------+-----------------------------
Reporter: ptasec | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 5.4.1
Severity: normal | Keywords:
Focuses: |
--------------------------+-----------------------------
It seems that almost all http methods are allowed on /login, on all other
resources anything other than GET, HEAD or POST will return a 405
response, but on /login every method returns a 200 response.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/50179>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list