[wp-trac] [WordPress Trac] #22873: Consider moving to a notice for $wpdb->prepare in 3.5.1

WordPress Trac noreply at wordpress.org
Wed Dec 12 11:12:41 UTC 2012

#22873: Consider moving to a notice for $wpdb->prepare in 3.5.1
 Reporter:  nacin             |       Owner:
     Type:  defect (bug)      |      Status:  new
 Priority:  low               |   Milestone:  3.5.1
Component:  Warnings/Notices  |     Version:  3.5
 Severity:  minor             |  Resolution:
 Keywords:                    |
Changes (by toscho):

 * cc: info@… (added)


 The big advantage of the warning is users are forced to make a decision. I
 think it is better to run the site without an insecure plugin or theme for
 a while than keeping the security issue hidden. `doing_it_wrong()` and
 notices are not visible for the average user, they do not help. And there
 are probably even more issues in plugins and themes with such code.

 There was enough time for developers to test their code. Let’s keep it as
 it is now, this might be a useful lesson.

Ticket URL: <http://core.trac.wordpress.org/ticket/22873#comment:2>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software

More information about the wp-trac mailing list