[wp-hackers] protecting wp-content/plugins ?
r at robm.me.uk
Fri Aug 24 14:36:35 GMT 2007
Stephen Rider wrote:
> So... if I'm a hacker, can't I just write a PHP script that defines
> that constant and then includes or calls the exploitable plugin? (Or
> would I have to somehow get my script onto your server?)
You would have to get your code onto their server, and when that's
possible there are rather a few more concerns than holes in plugins.
More information about the wp-hackers