[wp-hackers] Wordpress File Inclusion

Andy Skelton skeltoac at gmail.com
Tue Nov 14 06:36:47 GMT 2006

On 11/13/06, Dougal Campbell <dougal at gunters.org> wrote:
> Yeah, I can't see any way to exploit anything here unless a plugin or
> theme is injecting a 'file' value into wp_query. Should we consider
> setting an extract type and/or prefix, just to lessen the possibility
> that a plugin or theme could dirty the variable space?

The URL provided in the example is not a valid exploit. IT DOES NOT
WORK. (Repeating for those that didn't get it already. Sorry.)

Setting an extract type would be good.

In case somebody missed it, this is not a security hole. The original
reporter was wrong.


More information about the wp-hackers mailing list