Make WordPress Core

Opened 5 years ago

Closed 5 years ago

Last modified 5 years ago

#14594 closed defect (bug) (fixed)

Header injection in ms-files.php?

Reported by: Denis-de-Bernardy Owned by:
Milestone: 3.1 Priority: normal
Severity: normal Version: 3.0.1
Component: Security Keywords:
Focuses: Cc:



Isn't there any potential to send raw, unfiltered data in this line?

Change History (4)

comment:1 @Denis-de-Bernardy5 years ago

  • Resolution set to fixed
  • Status changed from new to closed

comment:2 @Denis-de-Bernardy5 years ago

There might still be some potential for injections, though. Unit tests would be good...

comment:3 @hakre5 years ago

Related: #14450

comment:4 @nacin5 years ago

  • Milestone changed from Awaiting Review to 3.1
Note: See TracTickets for help on using tickets.