[wp-trac] Re: [WordPress Trac] #4789: Write Post title doesn't
escape HTML tags
WordPress Trac
wp-trac at lists.automattic.com
Sat Sep 15 12:24:03 GMT 2007
#4789: Write Post title doesn't escape HTML tags
---------------------+------------------------------------------------------
Reporter: hje1555 | Owner: anonymous
Type: defect | Status: closed
Priority: normal | Milestone:
Component: General | Version:
Severity: normal | Resolution: duplicate
Keywords: |
---------------------+------------------------------------------------------
Comment (by Viper007Bond):
Replying to [comment:7 Viper007Bond]:
> It's a toughy. Personally, I like being able to `<del>` and `<em>` stuff
in my titles.
Although for the average user, I think they'd expect that those items
would display as typed.
So, a solution:
On output (anywhere and everywhere), filter the title and do a
`htmlspecialchars()` on it rendering HTML invalid. For us wishing to still
post HTML in titles, we could just remove the filter.
--
Ticket URL: <http://trac.wordpress.org/ticket/4789#comment:8>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list