[wp-trac] [WordPress Trac] #24248: 'guid' not properly escaped
WordPress Trac
noreply at wordpress.org
Fri May 10 20:32:45 UTC 2013
#24248: 'guid' not properly escaped
-------------------------------------------------+-------------------------
Reporter: meloniq | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Future
Component: Post Types | Release
Severity: normal | Version: 2.5
Keywords: has-patch needs-unit-tests | Resolution:
3.7-early |
-------------------------------------------------+-------------------------
Changes (by SergeyBiryukov):
* keywords: has-patch needs-testing => has-patch needs-unit-tests
3.7-early
* version: trunk => 2.5
* milestone: Awaiting Review => Future Release
Comment:
Introduced in [6593]. Triggered by the introduction of custom post types
in 2.9, since their permalinks can contain an ampersand.
[attachment:guid-context.patch] seems good. Other `get_post_field()`
instances in `wp_insert_post()` should probably use `'raw'` context too.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/24248#comment:3>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list