Reply to post: Re: Does anybody use phar://?

So phar, so FUD: PHP flaw puts WordPress sites at risk of hacks

macjules Silver badge
Unhappy

Re: Does anybody use phar://?

Quite so. WordPress is (almost) ok to use and pretty amazing in its more developer-friendly decoupled state. The problems start when you add any one of the thousands of plugins, many of which seem to completely bypass such simple PHP things as private or public protection.

And then you take a look at Drupal security and gently start to weep ..

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019