[wp-trac] [WordPress Trac] #63320: Sanitize key parameter in activation flow to enhance security
WordPress Trac
noreply at wordpress.org
Tue Apr 29 03:13:36 UTC 2025
#63320: Sanitize key parameter in activation flow to enhance security
--------------------------------+------------------------
Reporter: khushipatel15 | Owner: flixos90
Type: enhancement | Status: closed
Priority: normal | Milestone: 6.9
Component: Networks and Sites | Version:
Severity: normal | Resolution: fixed
Keywords: has-patch | Focuses: multisite
--------------------------------+------------------------
Comment (by siliconforks):
I notice that `wp-activate.php` also looks for an activation key in
`$_COOKIE`:
https://github.com/WordPress/wordpress-
develop/blob/843e4860dd90f47b668567b851b34cd8f3dd8f65/src/wp-
activate.php#L50
--
Ticket URL: <https://core.trac.wordpress.org/ticket/63320#comment:9>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list