github-hall-of-fame icon indicating copy to clipboard operation
github-hall-of-fame copied to clipboard

Published 20 hours ago verified publisher icon mehulkar

Wordpress vulnerability via PR

Open stevemoser opened this issue 9 years ago • 2 comments

Seems that the PR (number 18) on the Wordpress repo has been deleted but the commit exists. HN discussion: https://news.ycombinator.com/item?id=4464044

stevemoser avatar Aug 31 '15 03:08 stevemoser

hmm, not sure I understand the vulnerability or how it relates to the PR. Can you say more about why this is a hall of fame worthy entry?

mehulkar avatar Sep 01 '15 22:09 mehulkar

@mehulkar Someone tried to get a very obvious backdoor into Wordpress master by just sending a pull request, hoping the maintainers would merge it without looking at the code.

dfyx avatar Sep 02 '15 10:09 dfyx