- Bought between 10 and 49 items
- Exclusive Author
- Has been a member for 3-4 years
- Sold between 100 and 1 000 dollars
iamthwee said
@thecodingdude actually LOOK at your WP-config file.You’ll notice ‘DBPASS’ is stored as a one time hash?
Do you know what that means?
/** MySQL database password */
define(‘DB_PASSWORD’, ‘password_here’);
include(”../wp-config.php”);
echo DB_PASSWORD;
Why don’t you try it?
- Bought between 10 and 49 items
- Exclusive Author
- Has been a member for 3-4 years
Since when does anyone have their wp-config file configured with the password stored as plain text such as:
define(‘DB_PASSWORD’, ‘password_here’);
I really don’t know if you’re being serious?
- Bought between 10 and 49 items
- Exclusive Author
- Has been a member for 3-4 years
- Sold between 100 and 1 000 dollars
iamthwee said
Since when does anyone have their wp-config file configured with the password stored as plain text such as:define(‘DB_PASSWORD’, ‘password_here’);I really don’t know if you’re being serious?
I am being serious and yes people do.
- Bought between 10 and 49 items
- Exclusive Author
- Has been a member for 3-4 years
[Edit] I just got what you meant…
- Author had a File in an Envato Bundle
- Author had a Free File of the Month
- Author was Featured
- Bought between 10 and 49 items
- Contributed a Blog Post
- Contributed a Tutorial to a Tuts+ Site
- Denmark
- Exclusive Author
- Has been a member for 2-3 years
Why would you give someone your passwords in the first place? o0
- Author was Featured
- Bought between 100 and 499 items
- Exclusive Author
- Has been a member for 5-6 years
- Item was Featured
- Referred between 200 and 499 users
- Sold between 100 000 and 250 000 dollars
- United States
The same reason people eat at McDonalds. Speed and price. Everybody knows it’s garbage, but people use it anyways.
- Author was Featured
- Bought between 100 and 499 items
- Exclusive Author
- Has been a member for 5-6 years
- Item was Featured
- Referred between 200 and 499 users
- Sold between 100 000 and 250 000 dollars
- United States
*dupe
- Australia
- Bought between 100 and 499 items
- Exclusive Author
- Has been a member for 2-3 years
- Interviewed on the Envato Notes blog
- Microlancer Beta Tester
- Sold between 1 000 and 5 000 dollars
michaelhejja said
The same reason people eat at McDonalds. Speed and price. Everybody knows it’s garbage, but people use it anyways.
I hate Wormpress with a passion.
- Has been a member for 4-5 years
- Exclusive Author
- Europe
- Bought between 10 and 49 items
- Referred between 100 and 199 users
- Sold between 100 and 1 000 dollars
- Microlancer Beta Tester
And so it begins…
Up next: iOS vs. Android.
- Sold between 100 000 and 250 000 dollars
- Author had a File in an Envato Bundle
- Has been a member for 4-5 years
- Author had a Free File of the Month
- Won a Competition
- Author was Featured
- Item was Featured
- Bought between 10 and 49 items
Thecodingdude saidThat’s how all php cms work, you need to set db password somewhere. If somebody has access to your filesystem then you’re just screwed and can’t really blame wordpress for that.
include(”../wp-config.php”);
echo DB_PASSWORD;
Remote exploits have been found in core files but much less frequently than other popular cms like joomla just to name one. The real problem are themes and plugins coded without any security check.
Request processing...