Opened 13 years ago
Closed 13 years ago
#19774 closed defect (bug) (fixed)
Potential undefined array access in XML-RPC mw_newPost/mw_editPost
Reported by: |
|
Owned by: |
|
---|---|---|---|
Milestone: | 3.4 | Priority: | normal |
Severity: | trivial | Version: | 3.3.1 |
Component: | XML-RPC | Keywords: | has-patch |
Focuses: | Cc: |
Description
When attempting to determine the appropriate cap check, some of the logic attempts to access members of the content_struct
array that are not required to be set, resulting in 'undefined index' error/notice.
Specifically, this can occur when 'post_type' is supplied but not 'post_status'.
An example XML-RPC request that triggers one of the two if statements is in the test_call.txt
attachment.
Attachments (3)
Change History (6)
Note: See
TracTickets for help on using
tickets.
Discovered that the same logic was copy/pasted to mw_editPost, so patching that as well.