[wp-trac] Re: [WordPress Trac] #8689: preg_replace with /e
forbidden with Suhosin patch
WordPress Trac
wp-trac at lists.automattic.com
Sun Dec 21 00:50:59 GMT 2008
#8689: preg_replace with /e forbidden with Suhosin patch
--------------------------+-------------------------------------------------
Reporter: BenBE | Owner: ryan
Type: defect (bug) | Status: new
Priority: high | Milestone: 2.7.1
Component: Security | Version: 2.7
Severity: major | Resolution:
Keywords: Suhosin |
--------------------------+-------------------------------------------------
Comment (by jacobsantos):
Two affected are external libraries, which needs to have the defect
reported upstream.
1. wordpress\wp-
includes\js\tinymce\plugins\spellchecker\classes\GoogleSpell.php
1. wordpress\wp-includes\class-phpmailer.php
One is a plugin, which again needs to be reported at the plugin trac.
The instances in kses, should already be fixed, but it can be looked at
again.
The others do need to be corrected.
--
Ticket URL: <http://trac.wordpress.org/ticket/8689#comment:1>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list