WordPress.org

Ready to get started?Download WordPress

Forums

WP-RecentComments
v2.1 Removes Feature When Sec. Vuln. Could Be Fixed (2 posts)

  1. MomDad
    Member
    Posted 2 years ago #

    v2.1 Unnecessarily Removes Feature When Security Vulnerability Could Be Fixed

    In your v2.1 update (in response to the security vulnerability found in v2.0.7 and lower), instead of easily fixing the issue, you've instead chosen to completely remove the feature of being able to fetch the full comment content!? That feature is the reason why I chose your plugin over others. You really didn't need to remove that, instead just sanitize the $id (the same way you did for the rc-ajax action's $page value) by type casting it as an integer with "(int)":

    change:

    ...
    } else if($_GET['action'] == 'rc-content') {
        $id = $_GET["id"];
        echo rc_get_content($id);
        ...

    to:

    ...
    } else if($_GET['action'] == 'rc-content') {
        $id = (int)$_GET["id"]; //JUST (int) IT!
        echo rc_get_content($id);
        ...

    http://wordpress.org/extend/plugins/wp-recentcomments/

  2. mg12
    Member
    Plugin Author

    Posted 2 years ago #

    Thanks for your suggest, I will try to add the feature back soon. :)

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic