[CentOS] WordPress possilbe SQL injections [was: SELinux - way of the future or good idea but !!!]

Tue Dec 21 12:44:50 UTC 2010
Leonard den Ottolander <leonard at den.ottolander.nl>

Hello Jerry,

On Thu, 2010-12-02 at 15:34 -0800, Jerry Franz wrote:
> And in an exact example of this, today I needed to update some WordPress 
> (WP) installations. Only, for "some reason" the FTP based autoupdater 
> didn't work today.

Do you feel comfortable letting a web application update itself using
FTP or even SSH credentials?



The patch shown in

prompted me to try a

$ grep -r "\=\ \%s\"" *

in the web root of a WordPress installation. The matches are a bunch of
possible SQL injections. Haven't checked the actual code paths, but note
how all these strings are unescaped and potentially allow the addition
of extra statements using ';'.


mount -t life -o ro /dev/dna /genetic/research