Difference between revisions of "Postie Plugin"
From Joseph Luis Wiki
Josephluis (Talk | contribs) (Created page with "'''Back to the TOC''' As Oct. 2012 the [http://wordpress.org/extend/plugins/postie/ Postie Plugin] [http://wordpress.org/support/topic/plugin-postie-delete...") |
(No difference)
|
Latest revision as of 14:21, 25 October 2012
As Oct. 2012 the Postie Plugin required the following change in postie_getmail.php
if(preg_match("@((%3C|<)/?script|<meta|document\.|\.cookie|\.createElement|onload\s*=|(eval|base64)\()@is",$email)){
echo "possible XSS attack - ignoring email\n";
continue;
}
