[wp-trac] [WordPress Trac] #54279: Unescaped echo in wp-includes/general-template.php
WordPress Trac
noreply at wordpress.org
Thu Oct 21 18:17:34 UTC 2021
#54279: Unescaped echo in wp-includes/general-template.php
------------------------------------+-------------------------------
Reporter: sabbirshouvo | Owner: SergeyBiryukov
Type: enhancement | Status: closed
Priority: normal | Milestone: 5.9
Component: Login and Registration | Version:
Severity: normal | Resolution: fixed
Keywords: has-patch commit | Focuses: coding-standards
------------------------------------+-------------------------------
Changes (by SergeyBiryukov):
* owner: (none) => SergeyBiryukov
* status: new => closed
* resolution: => fixed
Comment:
In [changeset:"51926" 51926]:
{{{
#!CommitTicketReference repository="" revision="51926"
Coding Standards: Improve escaping in `wp_login_form()`.
* Split long concatenated lines using `sprintf()`. This aims to improve
readability and avoid multiple `esc_attr()` calls for the same value.
* Escape the form `name` and `id` attributes.
Follow-up to [12696], [18444], [19033].
Props sabbirshouvo, mukesh27, audrasjb, henry.wright, SergeyBiryukov.
Fixes #54279.
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/54279#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list