Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Sql Injection in wordpress 2.3.1

From: shino () jenux homelinux org
Date: 5 Dec 2007 19:27:09 -0000
Wordpress 2.3.1 converts the 'p' parameter to an integer.

query.php line 449:
$qv['p'] =  (int) $qv['p'];

So there is no exploit possibility.
Previous By Date Next
Previous By Thread Next

Current thread: