[wp-trac] Re: [WordPress Trac] #3722: Search string does not
sanitize commas
WordPress Trac
wp-trac at lists.automattic.com
Wed Jan 31 01:54:52 GMT 2007
#3722: Search string does not sanitize commas
----------------------+-----------------------------------------------------
Reporter: zippity | Owner: charleshooper
Type: defect | Status: new
Priority: normal | Milestone: 2.1.1
Component: Security | Version: 2.1
Severity: normal | Resolution:
Keywords: |
----------------------+-----------------------------------------------------
Changes (by charleshooper):
* owner: anonymous => charleshooper
Comment:
This is kind of a hack actually. This basically just gets rid of the extra
SQL formatting if {{{$search}}} is empty, thus getting rid of the database
error when a user submits a single comma as a search term.
The result?
When a user submits a single comma search all _published_ posts are
returned.
Everything else seems OK though.
--
Ticket URL: <http://trac.wordpress.org/ticket/3722#comment:2>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list