[wp-hackers] protecting wp-content/plugins ?

Rob Miller r at robm.me.uk
Fri Aug 24 14:36:35 GMT 2007

Stephen Rider wrote:
> So...  if I'm a hacker, can't I just write a PHP script that defines 
> that constant and then includes or calls the exploitable plugin?  (Or 
> would I have to somehow get my script onto your server?)
You would have to get your code onto their server, and when that's 
possible there are rather a few more concerns than holes in plugins.


Rob Miller

More information about the wp-hackers mailing list