BugTraq
Re: Word Press Sensitive Directory exposure (SQL) Mar 08 2007 06:48PM
none none com
" #File Name: admin-functions.php

//SQL EXAMPLE ERROR:

Fatal error: Call to undefined function __() in /usr/local/www/****/data/wp-admin/admin-functions.php on line 1593

Thanks,
r00t "

hi there

don't you think you can post a simple full path disclosure on the wordpress bugtracker website ?

"//SQL EXAMPLE ERROR:"
http://site.com/wp-admin/admin-functions.php
/home/user/www/htdocs/wp-admin/admin-functions.php

there's nothing about sql here ...
it's only because there's no htaccess on the folder and you can access the file directly ...

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus