[wp-trac] [WordPress Trac] #25239: $_SERVER['SERVER_NAME'] not a reliable when generating email host names
WordPress Trac
noreply at wordpress.org
Thu May 4 19:22:56 UTC 2017
#25239: $_SERVER['SERVER_NAME'] not a reliable when generating email host names
-------------------------------------------------+-------------------------
Reporter: layotte | Owner:
Type: defect (bug) | SergeyBiryukov
Priority: normal | Status: reviewing
Component: Mail | Milestone: Future
Severity: normal | Release
Keywords: has-patch dev-feedback needs- | Version: 3.8
testing | Resolution:
| Focuses:
-------------------------------------------------+-------------------------
Comment (by tsimmons):
This seems to have escalated due to the release of https://cve.mitre.org
/cgi-bin/cvename.cgi?name=CVE-2017-8295 and https://exploitbox.io/vuln
/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html.
Allowing user-supplied input without check or verification is a terrible
thing.
For now I'm using @BjornW 's plugin https://wordpress.org/plugins/admin-
email-as-from-address/#description to mitigate the exposure, but we really
should be pulling this information from the site_url and an officially
sanctioned patch should be issued.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/25239#comment:60>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list