解决：wordpress WPImageEditorImagick 指令注入漏洞

漏洞名称：wordpress WP_Image_Editor_Imagick 指令注入漏洞

在/wp-includes/media.php的_wp_image_editor_choose函数内部找到（大概在2898行）：

$implementations = apply_filters( 'wp_image_editors', array( 'WP_Image_Editor_Imagick' ,  'WP_Image_Editor_GD' ) );

1	$implementations = apply_filters( 'wp_image_editors', array( 'WP_Image_Editor_Imagick' , 'WP_Image_Editor_GD' ) );

修改为

$implementations = apply_filters( 'wp_image_editors', array(  'WP_Image_Editor_GD' ,'WP_Image_Editor_Imagick' ) );

1	$implementations = apply_filters( 'wp_image_editors', array( 'WP_Image_Editor_GD' ,'WP_Image_Editor_Imagick' ) );

专业提供WordPress网站建设、主题定制、插件开发和维护优化等服务

资深团队

技术支持

优质服务

售后无忧

Signup