Make WordPress Core

Changes between Initial Version and Version 1 of Ticket #50023, comment 9


Ignore:
Timestamp:
04/28/2020 05:29:35 PM (4 years ago)
Author:
marciancarutasu
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #50023, comment 9

    initial v1  
    1 totally interpretable, but think of it again. if you are the owner of a website you can do a million illegal stuff and you take the 'credit' for it.
    2 
    3 but what wordpress is doing here is completely wrong, on many levels.
    4 they leave a huge door open there for many illegal stuff.
    5 
    6 let's say I am a hacker and I have found this flaw in comments section. YOU SCRAPE THE WEB FOR THAT LOOPHOLE, FIND 10MILION USERS THAT LEFT A COMMENT ON A WORDPRESS SITE AND YOU GET THE POWER TO POST ON THEIR BEHALF, or a simple edit of comments or I dunno.
    7 maybe a security flaw there.