[wp-trac] [WordPress Trac] #43187: Add pre-save filter to make target="_blank" always secure

WordPress Trac noreply at wordpress.org
Mon Feb 5 09:51:25 UTC 2018


#43187: Add pre-save filter to make target="_blank" always secure
-------------------------+-----------------------
 Reporter:  notnownikki  |       Owner:
     Type:  enhancement  |      Status:  reopened
 Priority:  normal       |   Milestone:  5.0
Component:  General      |     Version:
 Severity:  normal       |  Resolution:
 Keywords:  has-patch    |     Focuses:
-------------------------+-----------------------

Comment (by iseulde):

 Don't we have a lot more fields where the user can insert HTML, such as
 taxonomy descriptions, bio etc.?

 Here's some more in core that seems to have kses filters:
 https://github.com/WordPress/wordpress-develop/blob/master/src/wp-includes
 /default-filters.php#L15-L83

--
Ticket URL: <https://core.trac.wordpress.org/ticket/43187#comment:30>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list