[wp-trac] [WordPress Trac] #16778: wordpress is leaking user/blog information during wp_version_check()
WordPress Trac
noreply at wordpress.org
Wed Dec 7 09:43:19 UTC 2016
#16778: wordpress is leaking user/blog information during wp_version_check()
----------------------------+-----------------------
Reporter: investici | Owner:
Type: enhancement | Status: reopened
Priority: normal | Milestone:
Component: Administration | Version:
Severity: minor | Resolution:
Keywords: has-patch | Focuses:
----------------------------+-----------------------
Comment (by MattyRob):
Pending action in the core code that may or may not happen I've created
some code after many hours of messing about logging and blocking all
requests and come up with a few functions that reduce the leaking of data.
Apologies it's not well documented in what it is doing at the moment and
there may be more in there than you need (like blocking auto-updates) but
if you are concerned already you are free to use my code:
https://gist.github.com/mattyrob/2e492e5ecb92233eb307f7efd039c121
--
Ticket URL: <https://core.trac.wordpress.org/ticket/16778#comment:52>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list