[wp-trac] [WordPress Trac] #60704: Lack of Rate Limiting
WordPress Trac
noreply at wordpress.org
Wed Mar 6 06:49:07 UTC 2024
#60704: Lack of Rate Limiting
-------------------------------------------------+-------------------------
Reporter: rakeshchavan | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting
| Review
Component: General | Version: 6.4.3
Severity: normal | Keywords:
Focuses: accessibility, administration, |
rest-api, performance, coding-standards |
-------------------------------------------------+-------------------------
URL: http://demodomain.com/wp-admin/user-new.php
Implement a limit on how often a client can call the API within a defined
timeframe.
Notify the client when the limit is exceeded by providing the limit number
and the time at which the limit will be reset.
Add proper server-side validation for query string and request body
parameters, specifically, the one that controls the number of records to
be returned in the response.
Define and enforce the maximum size of data on all incoming parameters and
payloads such as the maximum length for strings and maximum number of
elements in arrays.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/60704>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list