[wp-trac] [WordPress Trac] #52544: Removing database tables allows anyone to take over all website files

WordPress Trac noreply at wordpress.org
Tue Mar 30 11:51:49 UTC 2021


#52544: Removing database tables allows anyone to take over all website files
-----------------------------+------------------------------
 Reporter:  winternetstudio  |       Owner:  (none)
     Type:  enhancement      |      Status:  new
 Priority:  normal           |   Milestone:  Awaiting Review
Component:  Security         |     Version:  5.6.1
 Severity:  major            |  Resolution:
 Keywords:                   |     Focuses:
-----------------------------+------------------------------

Comment (by winternetstudio):

 You can think whatever you want - but your assumptions are incorrect. I
 know that I'm not trying to make an excuse for my mistake, of course I
 should have been more careful. My emotionality is because I'm really
 surprised about your arguments which I don't think hold water at all.

 If you can't understand how I could do this by mistake you obviously
 haven't read my report (in moving the site I used a MySQL client if you
 think that is relevant). Of course it's not a "huge" security issue but I
 understand that you rather want to keep an unneeded feature than help
 alleviating potential security problems. Got it. Ciao.

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/52544#comment:10>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list