Security-Warning | WordPress.org

Resolved Patrick
(@hovida)

12 years, 7 months ago

Hi,

I am a plugin developer, I fall so loving something up:

WordPress stores various information, including in global variables. Problem here is that there credentials are used (for example, the database).

Since you can access with plugins on these variables, this is a serious security leak.

Not only theoretically but also practically a plugin can access the data and send this via e-mail!

Viewing 1 replies (of 1 total)

Moderator Ipstenu (Mika Epstein)
(@ipstenu)

🏳️‍🌈 Advisor and Activist

12 years, 7 months ago

Yes. Which is why you should choose your plugins carefully.

Viewing 1 replies (of 1 total)

The topic ‘Security-Warning’ is closed to new replies.

In: Requests and Feedback
1 reply
2 participants
Last reply from: Ipstenu (Mika Epstein)
Last activity: 12 years, 7 months ago
Status: resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics