[wp-trac] [WordPress Trac] #62783: WordPress.org theme replacing custom theme of same name.
WordPress Trac
noreply at wordpress.org
Wed Jan 8 14:20:22 UTC 2025
#62783: WordPress.org theme replacing custom theme of same name.
-------------------------------+------------------------------
Reporter: mattk1980 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Themes | Version: 6.7.1
Severity: normal | Resolution:
Keywords: reporter-feedback | Focuses:
-------------------------------+------------------------------
Comment (by mattk1980):
By malicious I also mean someone who wants to just have links to their
malicious website for seo purposes. e.g someone creates a theme which
links to their malicious website and the sole purpose of the theme is to
gain links from the target because they know their theme could get
overwritten with the bogus one. It would be a short term gain i guess. I
don't think it would always be obvious the bogus theme is malicious. They
may just want a competitors website to be overwritten with the bogus
theme.
Maybe it should be a choice to look at wordpress.org for themes and not be
the default should the Update URI header not exist.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/62783#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list