Bugtraq mailing list archives

Re: Re: Wordpress <= v2.1.0

From: ciri () virtuax be
Date: 7 Mar 2007 18:31:43 -0000

Not anything, quotes for instance, are sanitized. 

Although it's meant to be this way by design, I still think it's a big security risk. I have contacted Wordpress and 
they are fixing this 'functionality' in the next version.

Current thread:

Wordpress <= v2.1.0 ciri (Mar 05)
- RE: Wordpress <= v2.1.0 McCarty, Eric C. (Mar 05)
- Re: Wordpress <= v2.1.0 vvitkov () intergenia de (Mar 06)
- <Possible follow-ups>
- Re: Re: Wordpress <= v2.1.0 ciri (Mar 07)