Make WordPress Core

#48016 closed defect (bug) (invalid)

Dll Hijacking in WordPress desktop app

Reported by: sailay1996 Owned by:
Milestone: Priority: normal
Severity: normal Version:
Component: General Keywords:
Focuses: Cc:


Hello Sir,

I've discovered the dll hijacking bug in wordpress desktop app (wordpress.com.exe) . for more information, https://heynowyouseeme.blogspot.com/2019/09/dll-search-order-hijacking-in-wordpress.html .Can i request CVE id for this bug ?

With Regard ,
Sai Wynn Myat.

Change History (1)

#1 @swissspidy
13 months ago

  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Status changed from new to closed

Hi there

This is the place to report bugs in WordPress.org related software (the open source WordPress CMS).

The WordPress.com desktop app, offered by Automattic, is unrelated. To report a security issue with that, you should go to https://hackerone.com/automattic.

Also, never post potential security issues publicly. Always go through HackerOne.

Note: See TracTickets for help on using tickets.