漏洞名稱:WordPress WP_Image_Editor_Imagick 指令注入漏洞
在/wp-includes/media.php 的_wp_image_editor_choose 函數內部找到 (大概在 2898 行):
- $implementations = apply_filters( 'wp_image_editors', array( 'WP_Image_Editor_Imagick' , 'WP_Image_Editor_GD' ) );
修改為
- $implementations = apply_filters( 'wp_image_editors', array( 'WP_Image_Editor_GD' ,'WP_Image_Editor_Imagick' ) );