[wp-hackers] protecting wp-content/plugins ?
Rob Miller
r at robm.me.uk
Fri Aug 24 14:36:35 GMT 2007
Stephen Rider wrote:
> So... if I'm a hacker, can't I just write a PHP script that defines
> that constant and then includes or calls the exploitable plugin? (Or
> would I have to somehow get my script onto your server?)
>
You would have to get your code onto their server, and when that's
possible there are rather a few more concerns than holes in plugins.
Rob
--
Rob Miller
http://robm.me.uk/
More information about the wp-hackers
mailing list