[wp-trac] [WordPress Trac] #55396: Automatically add table prefix on WordPress setup
WordPress Trac
noreply at wordpress.org
Wed Mar 16 06:01:38 UTC 2022
#55396: Automatically add table prefix on WordPress setup
-------------------------+-----------------------------
Reporter: sruthi89 | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version:
Severity: normal | Keywords: needs-patch
Focuses: |
-------------------------+-----------------------------
The default table prefix easily allows a SQL Injection vulnerability.
Currently, on WordPress setup also, the default prefix is auto-filled,
which users may ignore.
So on WordPress setup, the table prefix can be auto-filled with randomly
generated characters, preferably four characters, which will solve this
issue.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/55396>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list