[wp-trac] [WordPress Trac] #35869: Preview of menu items includes unnecessary slashes for users without unfiltered_html
WordPress Trac
noreply at wordpress.org
Sun Feb 21 06:24:17 UTC 2016
#35869: Preview of menu items includes unnecessary slashes for users without
unfiltered_html
--------------------------+--------------------------
Reporter: ocean90 | Owner: westonruter
Type: defect (bug) | Status: accepted
Priority: normal | Milestone: 4.5
Component: Customize | Version: 4.3
Severity: normal | Resolution:
Keywords: needs-patch | Focuses:
--------------------------+--------------------------
Changes (by westonruter):
* owner: => westonruter
* status: new => accepted
* version: => 4.3
* milestone: Awaiting Review => 4.5
Comment:
The problem with `wp_filter_kses` (and `wp_filter_post_kses`, see #1697)
are that they both presume the data is already slashed. I suppose the
simplest way to deal with this is to `wp_slash()` the data if we detect
that `title_save_pre` has the `wp_filter_kses` filter, and likewise for
the other filters.
This issue can be currently seen on any install where the user cannot
`unfiltered_html`, for example on multisite installs.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/35869#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list