wp_protect_special_option rejects things it shouldn't
|Reported by:||agarden||Owned by:||nacin|
If wp_protect_special_option is called with $option == 0 it will die. I have a client for whom this took down their entire WordPress install. Now, I assume that some plugin or some such should not have been passing zero as an option name, so that's another bug. But a buggy plugin should not be able to take down an entire install so carelessly.
Fix is trivial. Have in_array use strict checking. Patch is attached.
Change History (10)
4 years ago
- Milestone changed from Awaiting Review to 3.6
- Version changed from trunk to 2.2