2007-11-04 16:24:50
By Tim Brown
So today I was playing with WordPress a little more, upgrading my installation and hardening the configuration as suggested by BlogSecurity and I stumbled across a(nother) minor input validation flaw :/. I say minor because it can't be used to compromise the blog or hosting system, but simply allows the file path to be disclosed. If you're interested have a look at /wp-admin/plugins.php?page=.
Mood: Satisfied
Music: Nothing playing right now
You are unknown, comment