<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: WordPress 2.0.3 SQL Error and Full Path Disclosure

Re: WordPress 2.0.3 SQL Error and Full Path Disclosure

From: Jaroslaw Sajko <sloik_at_parareal.net>
Date: Tue, 04 Jul 2006 20:18:37 +0200

Dnia 02-07-2006, nie o godzinie 09:15 +0000, xzerox_at_linuxmail.org
napisał(a):

> Example:
>
> http://localhost/wordpress/index.php?paged=-1
>
> Result:
>
> WordPress database error: [Erreur de syntaxe pr?s de '-20, 10' ? la ligne 1]
> SELECT DISTINCT * FROM wp_posts WHERE 1=1 AND post_date_gmt <= '2006-06-29 12:46:59' AND (post_status = "publish") AND post_status != "attachment" GROUP BY wp_posts.ID ORDER BY post_date DESC LIMIT -20, 10

Put this line somewhere in the wp-settings.php file (for example at the
end of the code before the do_action(init) call):

$wpdb->hide_errors();

>
> ~ Full path ~
>
> /wp-settings.php
> /wp-admin/admin-footer.php
> /wp-admin/admin-functions.php
> /wp-admin/edit-form.php

in line 60 of wp-settings.php change to:

error_reporting(0);

Now the World is safe.

--
js

Received on Jul 04 2006

This message: [ Message body ]
Next message: .myke lyons: "[Bugtraq] Re: flock d0s exploit remote. beta 1 (v0.7)"
Previous message: Rainer Duffner: "Re: file include exploits in randshop v1.2"
In reply to: xzerox_at_linuxmail.org: "WordPress 2.0.3 SQL Error and Full Path Disclosure"
Next in thread: zck zck: "Re: WordPress 2.0.3 SQL Error and Full Path Disclosure"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos