[wp-trac] [WordPress Trac] #61513: Attention points in Pentest
WordPress Trac
noreply at wordpress.org
Wed Jun 26 20:40:53 UTC 2024
#61513: Attention points in Pentest
---------------------------+------------------------------
Reporter: raphaelsramos | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Resolution:
Keywords: | Focuses:
---------------------------+------------------------------
Comment (by deepakrohilla):
HI @raphaelsramos
point 1 already covered in #61314
point 2 : WordPress includes security measures to protect sensitive
operations like upgrades.
These typically include nonce checks (to prevent cross-site request
forgery) and capability checks,
While accessing upgrade.php directly is not a security risk in itself,
it's always important to keep your WordPress installation updated to the
latest version to mitigate potential security vulnerabilities.
WordPress can also be upgraded using the Command Line Interface (CLI)
without needing to be logged into the admin dashboard for that case,
If the following line of code is added to upgrade.php, and the user is not
logged in, they will be redirected to wp-
admin/upgrade.php?_wp_http_referer=%2Fwp-admin%2F, and the screen will
remain blank
{{{#!php
<?php
if( !is_user_logged_in() ){
die(-1);
}
}}}
so for that who install wordpress after loggedin that will work but ff
WordPress upgrade process is initiated via WP-CLI without the site admin
being logged in, the user will encounter a blank screen.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/61513#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list