[wp-trac] [WordPress Trac] #32142: Escape $s global
WordPress Trac
noreply at wordpress.org
Mon Apr 27 07:29:19 UTC 2015
#32142: Escape $s global
--------------------------+-----------------------
Reporter: nacin | Owner: nacin
Type: defect (bug) | Status: closed
Priority: normal | Milestone: 4.3
Component: Query | Version:
Severity: normal | Resolution: fixed
Keywords: | Focuses: template
--------------------------+-----------------------
Comment (by SergeyBiryukov):
Replying to [comment:2 rmccue]:
> If I was previously doing `title="echo esc_attr( $s )"` (correctly doing
late escaping), the text would now be double-escaped.
`esc_attr()` does not double-encode entities, see #25485.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/32142#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list