[Plugin: WP-RecentComments] v2.1 Removes Feature When Sec. Vuln. Could Be Fixed | WordPress.org

MomDad
(@momdad)

12 years ago
v2.1 Unnecessarily Removes Feature When Security Vulnerability Could Be Fixed

In your v2.1 update (in response to the security vulnerability found in v2.0.7 and lower), instead of easily fixing the issue, you’ve instead chosen to completely remove the feature of being able to fetch the full comment content!? That feature is the reason why I chose your plugin over others. You really didn’t need to remove that, instead just sanitize the $id (the same way you did for the rc-ajax action’s $page value) by type casting it as an integer with “(int)”:

change:
```
...
} else if($_GET['action'] == 'rc-content') {
    $id = $_GET["id"];
    echo rc_get_content($id);
    ...
```
to:
```
...
} else if($_GET['action'] == 'rc-content') {
    $id = (int)$_GET["id"]; //JUST (int) IT!
    echo rc_get_content($id);
    ...
```
http://wordpress.org/extend/plugins/wp-recentcomments/

Viewing 1 replies (of 1 total)

Plugin Author mg12
(@mg12)

12 years ago

Thanks for your suggest, I will try to add the feature back soon. 🙂

Viewing 1 replies (of 1 total)

The topic ‘[Plugin: WP-RecentComments] v2.1 Removes Feature When Sec. Vuln. Could Be Fixed’ is closed to new replies.

In: Plugins
1 reply
2 participants
Last reply from: mg12
Last activity: 12 years ago
Status: not resolved