[wp-hackers] Forum Post
Chris Davis
chrisdmitri at gmail.com
Wed May 25 14:20:43 GMT 2005
Hey lets just take all responsibility off of the end user, or their
webhost and do everything ourselves! Geez people, why should we be
held responsible for a mis-configured web-server?
On 5/23/05, Ryan Boren <ryan at boren.nu> wrote:
> On Mon, 2005-05-23 at 16:21 -0400, Robert Deaton wrote:
> > BTW, as far as exploits on the 1.5 codebase, there was one, an SQL
> > Injection vunerability in wp-trackback.php. Although not easily
> > exploitable, it still exist(ed). I don't remember if this got fixed or
> > not, but I do remember seeing it on the gentoo bug tracker
>
> http://trac.wordpress.org/changeset/2556#file3
>
> That diff took care of a tb_id vulnerability, which is the only
> wp-trackback related vulnerability that I am aware of.
>
> Ryan
>
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers
>
More information about the wp-hackers
mailing list