Opened 14 months ago
Closed 13 months ago
#993 closed defect (fixed)
app crashes if xmlrpc access restricted
| Reported by: | irbrad | Owned by: | |
|---|---|---|---|
| Priority: | minor | Milestone: | 3.0 |
| Component: | XML-RPC | Version: | |
| Keywords: | Cc: |
Description (last modified by irbrad)
- Add self hosted blog restricted with the WPIDS plugin
- HTML of /index.php returned instead of /xmlrpc.php and app crashes
- Add self hosted blog of <blogname>/xmlrpc.php
- HTML returned of "<div style="background-color:#FF0027;border:1px solid #CCC;color:#FFFFFF;margin:200pt auto;text-align:center;vertical-align:middle;width:600pt;padding:10px;">You tried to attack the xmlrpc.php file!</div>"
Change History (4)
comment:1 Changed 14 months ago by irbrad
comment:2 Changed 14 months ago by irbrad
- Description modified (diff)
comment:3 Changed 14 months ago by irbrad
- Description modified (diff)
comment:4 Changed 13 months ago by daniloercoli
- Resolution set to fixed
- Status changed from new to closed
I've not installed that plugin but hacked the xmlrpc.php file by putting a static response at the beginning of it:
$lvlcol = array('FF0027','FFFF33','33CC00');//red, yellow, green
$fntcol = array('FFFFFF','0','0');
die('<div style="background-color:#'.$lvlcol[$lvl].
';border:1px solid #CCC;color:#'.$fntcol[$lvl].
';margin:200pt auto;text-align:center;vertical-align:middle;width:600pt;padding:10px;">'.
$msg.'</div>');
The app didn't crash, but stopped on the loading div.
In ([2582]) I added the code that should fix it. The app now shows the error message.
Note: See
TracTickets for help on using
tickets.
For reference: http://wpids.googlecode.com/svn/trunk/wp-ids.php