Make WordPress Core

Opened 5 weeks ago

Closed 5 weeks ago

#48016 closed defect (bug) (invalid)

Dll Hijacking in WordPress desktop app

Reported by: sailay1996 Owned by:
Milestone: Priority: normal
Severity: normal Version:
Component: General Keywords:
Focuses: Cc:
PR Number:


Hello Sir,

I've discovered the dll hijacking bug in wordpress desktop app (wordpress.com.exe) . for more information, https://heynowyouseeme.blogspot.com/2019/09/dll-search-order-hijacking-in-wordpress.html .Can i request CVE id for this bug ?

With Regard ,
Sai Wynn Myat.

Change History (1)

#1 @swissspidy
5 weeks ago

  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Status changed from new to closed

Hi there

This is the place to report bugs in WordPress.org related software (the open source WordPress CMS).

The WordPress.com desktop app, offered by Automattic, is unrelated. To report a security issue with that, you should go to https://hackerone.com/automattic.

Also, never post potential security issues publicly. Always go through HackerOne.

Note: See TracTickets for help on using tickets.