Full Disclosure mailing list archives

Re: DoS via tables corruption in WordPress

From: jen140 <jen140 () gmail com>
Date: Wed, 12 Feb 2014 16:25:24 +0000

Hello.

After reading the original 2009'th post
(http://websecurity.com.ua/3152), in the last paragraph the author
says that it is possible(in Wordpress 2.0.x) to corrupt wp_users table
by automatically registering multiple accounts, so I think the problem
is to be found there.

Just a small reminder, youtube has lot's of "proof" for unbelievers of
all sorts including water to wine, ddosing by ping, etc, but in my
opinion, the POC code is normally used to show the proof in security
communities.

Have a nice day.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Re: DoS via tables corruption in WordPress, (continued)
- - Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 10)
- Re: DoS via tables corruption in WordPress Andrew Nacin (Feb 11)
  - Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 11)
    - Re: DoS via tables corruption in WordPress MustLive (Feb 12)
    - Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 12)
    - Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 12)
    - Re: DoS via tables corruption in WordPress MustLive (Feb 12)
    - Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 17)
- Re: DoS via tables corruption in WordPress Timothy Goddard (Feb 12)
  - Re: DoS via tables corruption in WordPress MustLive (Feb 21)
- Re: DoS via tables corruption in WordPress jen140 (Feb 12)