maride/hacktricks
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks.git synced 2025-10-10 18:36:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update wordpress.md

Browse Source
This commit is contained in:
SirBroccoli 2025-10-04 11:01:06 +02:00 committed by GitHub
parent b97cee4395
commit 7638765b53
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 0 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
src/network-services-pentesting/pentesting-web/wordpress.md
View File

@ -913,18 +913,6 @@ Hardening
- Enforce allowlisted templates; resolve with realpath() and require str_starts_with(realpath(file), realpath(allowed_base))
- Normalize input; reject traversal sequences and absolute paths; use sanitize_file_name() only for filenames (not full paths)
---
### Operational detection and virtual patching tips (application layer)
Until vendors ship fixes, block high-risk routes/parameters at the application layer (e.g., WAF/virtual patching engines that understand WordPress semantics):
- Block unauthenticated POSTs to /wp-json/sure-triggers/v1/connection/create-wp-connection
- Enforce capability-aware blocks on <fk-namespace>/plugin/install_and_activate for non-admin callers
- For depicter-* actions, drop requests where s contains SQLi metas ("'", '"', '/*', '*/', '--', ';', 'or ', 'union ', 'select '), tuned per-site
- For __kubio-site-edit-iframe-classic-template, block traversal patterns (../, ..\) and absolute paths
Logging: monitor for hits to the above and alert on nonces used pre-auth or surges in depicter-* queries.
## References