Ticket #5535 (closed defect: fixed)

Opened 5 months ago

Last modified 5 months ago

Limit post_password exposure in XML-RPC metaWeblog.getRecentPosts

Reported by: josephscott Assigned to: anonymous
Priority: normal Milestone: 2.3.2
Component: XML-RPC Version: 2.3.2
Severity: normal Keywords: has-patch
Cc: josephscott

Description

Add checks to metaWeblog.getRecentPosts so that only users who can edit a post will be provided a post_password, if one is set.

Attachments

xmlrpc.php.diff (0.6 kB) - added by josephscott on 12/26/07 19:43:25.

Change History

12/26/07 19:43:25 changed by josephscott

  • attachment xmlrpc.php.diff added.

12/26/07 19:50:27 changed by ryan

  • status changed from new to closed.
  • resolution set to fixed.

(In [6496]) Limit post_password exposure. Props josephscott for the patch and xknown for the find. fixes #5535 for 2.4

12/26/07 19:51:02 changed by ryan

(In [6497]) Limit post_password exposure. Props josephscott for the patch and xknown for the find. fixes #5535 for 2.3

12/26/07 19:51:22 changed by ryan

  • milestone changed from 2.4 to 2.3.2.