In reviewing a Theme, I ran across the following function:<div><br></div><blockquote class="webkit-indent-blockquote" style="margin: 0 0 0 40px; border: none; padding: 0px;"><div><div>//add a fix for embed videos overlaing quickbar</div>
<div>function fastfood_content_replace(){</div><div><span class="Apple-tab-span" style="white-space:pre">        </span>$content = get_the_content();</div><div><span class="Apple-tab-span" style="white-space:pre">        </span>$content = apply_filters(&#39;the_content&#39;, $content);</div>
<div><span class="Apple-tab-span" style="white-space:pre">        </span>$content = str_replace(&#39;]]&gt;&#39;, &#39;]]&amp;gt;&#39;, $content);</div><div><span class="Apple-tab-span" style="white-space:pre">        </span>$content = str_replace(&#39;&lt;param name=&quot;allowscriptaccess&quot; value=&quot;always&quot;&gt;&#39;, &#39;&lt;param name=&quot;allowscriptaccess&quot; value=&quot;always&quot;&gt;&lt;param name=&quot;wmode&quot; value=&quot;transparent&quot;&gt;&#39;, $content);</div>
<div><span class="Apple-tab-span" style="white-space:pre">        </span>$content = str_replace(&#39;&lt;embed &#39;, &#39;&lt;embed wmode=&quot;transparent&quot; &#39;, $content);</div><div><span class="Apple-tab-span" style="white-space:pre">        </span>echo $content;</div>
<div>}</div></div></blockquote><div><br></div><div>Just to be safe, I thought I would ask: does such filtering allow any potential security vulnerabilities? I admit that I don&#39;t know what exactly this function is accomplishing, which is why I&#39;m asking.</div>
<div><br></div><div>Chip</div>