Upstream/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2024-06-28 07:45:02 +02:00
Code Issues Projects Releases Wiki Activity
WordPress, Git-ified. This repository is just a mirror of the WordPress subversion repository. Please do not send pull requests. Submit pull requests to https://github.com/WordPress/wordpress-develop and patches to https://core.trac.wordpress.org/ instead
153 Commits 49 Branches 744 Tags 928 MiB
PHP 64.8%
JavaScript 17.9%
CSS 16.1%
SCSS 1.1%
HTML 0.1%
1aebecad96
Go to file
mikelittle 1aebecad96 Fix remote SQL injection exploit. 
"b2 0.6.2 and prior" allow sql injection in ./blog.header.php. $posts isn�t
convert to integer, so we can inject a sql in this variable. In MySQL 4.x
UNION and subselects can be used to obtain privileges.


git-svn-id: http://svn.automattic.com/wordpress/trunk@153 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2003-06-04 00:14:49 +00:00
b2-include fixed mismatched quotes in popup comment link 2003-06-01 21:00:30 +00:00
wp-admin Removed erroneous require of wp-db 2003-06-03 23:15:14 +00:00
b2.php Fix to use ezsql 2003-06-01 20:59:33 +00:00
b2archives.php Require -> require_once 2003-05-25 23:33:54 +00:00
b2calendar.php Removed erroneous require of wp-db 2003-06-03 23:15:14 +00:00
b2comments.php Major comments overhaul: decreased # of queries, combined *backs and comments, and made ezSQL mod. 2003-05-29 14:05:37 +00:00
b2comments.post.php ezSQL mods. 2003-05-29 14:04:30 +00:00
b2commentspopup.php Fix to use ezsql 2003-06-01 20:59:56 +00:00
b2config.php Removed erroneous require of wp-db 2003-06-03 23:15:14 +00:00
b2login.php Fix to use ezsql 2003-06-01 20:59:33 +00:00
b2mail.php New path system. 2003-05-25 12:43:31 +00:00
b2pingbacks.php More semantic markup. 2003-05-23 22:25:05 +00:00
b2pingbackspopup.php More semantic markup. 2003-05-23 22:25:05 +00:00
b2rdf.php New path system. 2003-05-25 12:43:31 +00:00
b2register.php New path system. 2003-05-25 12:43:31 +00:00
b2rss.php New path system. 2003-05-25 12:43:31 +00:00
b2rss2.php Removed rogue quote 2003-05-25 21:10:25 +00:00
b2trackback.php New path system. 2003-05-25 12:43:31 +00:00
b2trackbackpopup.php Fix path to print.css 2003-05-26 00:55:13 +00:00
blog.header.php Fix remote SQL injection exploit. 2003-06-04 00:14:49 +00:00
blogger-2-b2.php New path system. 2003-05-25 12:43:31 +00:00
example.htaccess added example for error reporting level - turn off 'Notices' 2003-05-25 23:39:25 +00:00
gm-2-b2.php New path system. 2003-05-25 12:43:31 +00:00
index.php esSQL changes. 2003-05-29 15:51:29 +00:00
layout2b.css Design elements tweaked and updated. Syntax fixed. 2003-05-26 10:24:55 +00:00
license.txt *** empty log message *** 2003-04-01 14:12:34 +00:00
phpinfo.php *** empty log message *** 2003-04-01 14:12:34 +00:00
print.css Design elements tweaked and updated. Syntax fixed. 2003-05-26 10:24:55 +00:00
readme.html New path system. 2003-05-25 12:43:31 +00:00
readme.txt *** empty log message *** 2003-04-01 14:12:34 +00:00
weblogs.com.changes.cache Cache file needed for wp-links. 2003-05-23 12:39:49 +00:00

readme.txt 

Holder