Learn More
Resend Email
24
marcus5914
7y

Guess what? 😱 WordPress has probably an SQL injection vulnerability. Check it out and fix your installations, when more info will be known:

https://twitter.com/ircmaxell/...

undefined

fuck

php

wordpress
Favorite
Ranter
Comments
  • 29
    7y
    What? A vulnerability in WordPress? But their code is so clean and maintainable, their code base so robust...
  • 5
    7y
    probably? I don't use wordpress but from rants I conclude it is for sure has any vulnerability you can think of since usually users end up throwing million extension to their websites
  • 2
    7y
    How are you supposed to fix it when a) word press haven't fixed it and b) it hasn't been disclosed yet (afaik)

    I guess there is option c) uninstall?
  • 3
    7y
    @Jonnyforgotten I'd go with option C without looking back
  • 3
    7y
    Based on the tweet, it’s not exactly useful holding off with a full disclosure unless you’re a major plugin dev, whom can’t fix there plugins anyway.

    Good job 👍
  • 4
    7y
    It's 2017, how can there still be SQL injection vulnerabilities in such a famous framework ?
  • 0
    7y
    @Strannch it's still stupidly prevalent, owasp 2017 top 10 still has it near the top spot in their rc2 release
  • 0
    7y
    Again jezus
  • 0
    7y
    Wow Wordpress ha a vulnerability? Never heard that before...
  • 0
    7y
    That's like saying the sky is blue.
  • 3
    7y
    @Strannch Its 2017. They still use md5. That should explain enough 😷
  • 1
    7y
    @linuxxx instead they should use plain text. Nobody suspects that.
Related Rants
devRant © 2021 Hexical Labs LLC
Privacy Policy  |  Terms of Service
Add Comment