wordpress图标

解决WordPress WP_Image_Editor_Imagick指令注入漏洞

漏洞名称:wordpress WP_Image_Editor_Imagick 指令注入漏洞

在/wp-includes/media.php的_wp_image_editor_choose函数内部找到:

[php]$implementations = apply_filters( ‘wp_image_editors’, array( ‘WP_Image_Editor_Imagick’ , ‘WP_Image_Editor_GD’ ) );[/php]

修改为:

[php]$implementations = apply_filters( ‘wp_image_editors’, array( ‘WP_Image_Editor_GD’ ,’WP_Image_Editor_Imagick’ ) );[/php]

发表评论

电子邮件地址不会被公开。 必填项已用*标注