These are chat archives for WP-Security-Community/WP-Security-Community

8th
Jun 2016
François Lamotte
@FrancoisLamotte
Jun 08 2016 05:04

Hello Guyz,

Did you see that script?

https://youtu.be/XILocJdXI1s

Jenny Wong
@missjwo
Jun 08 2016 06:38
No. Have you reported it to security team?
No one should be reporting issues here. Esp A day zero
Please remeber this is a publically q
Accessible room
François Lamotte
@FrancoisLamotte
Jun 08 2016 07:57

i understand but even in private groups when the group is large ... you don't protect any information. I'm on security group and other wp groups on Facebook with hundreds or thousands of members ... and nothing is really private even if those groups are.

I could delete the link you want to. :-)

Brecht Ryckaert
@brechtryckaert
Jun 08 2016 08:04
We don't want you to delete it, no worries. Jenny just meant we're actually not the team that patches those exploits. We're a bunch of people trying to educate users on security. More info on reporting issue can be consulted here: https://make.wordpress.org/core/handbook/testing/reporting-security-vulnerabilities/
But thanks for sharing this with us anyway. Very useful info.
Jenny Wong
@missjwo
Jun 08 2016 08:04
I already sent to someone i know in the security team. But 100% always make sure the security know about it first
This is really about educating users with publically known security issues and i highly recommend you read the read.me file in the repo
:)
also its a bti of a heart attack at 8am in the morning when you just woke up :P
François Lamotte
@FrancoisLamotte
Jun 08 2016 08:06
yes i understand. i've got better contacts than me :-)
Jenny Wong
@missjwo
Jun 08 2016 08:07
i think over time, we will know whats been public known and whats not
deffo a good video to show peopel how easy it is