[wp-hackers] Security Vulnerability found - Forum Post

Amit Gupta amit at igeek.info
Thu Apr 14 11:27:08 GMT 2005

well, loading the wp-config file will re-create the variable, no? ;)
but it can be made like if connection exists, then the wp-config file is not loaded else load it. stil then, the db user/password is still hard-coded into the wp-config. ;)

Amit Gupta

|| Canned!! -- my Atropine || iG:Syntax Hiliter v2.01 ||
|| iGEEK.INFO || Free Nokia Ringtones || Online Gaming @ Games Planet || 

---------- Original Message from "Robert Deaton" <false.hopes at gmail.com> ----------
I've always wondered why the info is stored in constants and not a variable that is unset
immediately after the database connection. Any particular reason?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://comox.textdrive.com/pipermail/wp-hackers/attachments/20050414/cf7cb145/attachment.html

More information about the wp-hackers mailing list