[wp-trac] [WordPress Trac] #60470: Use `filter_input` instead of superglobals where possible
WordPress Trac
noreply at wordpress.org
Fri Feb 9 22:58:07 UTC 2024
#60470: Use `filter_input` instead of superglobals where possible
-------------------------+------------------------------
Reporter: kkmuffme | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version:
Severity: normal | Resolution:
Keywords: | Focuses:
-------------------------+------------------------------
Comment (by kkmuffme):
As of PHP 8 any disabled functions aren't included in the functions table
and can be overwritten by a userland function - WP could define
filter_input if it doesn't exist in those cases
(https://php.watch/versions/8.0/disable_functions-redeclare)
Which would make the argument that some servers don't have filter_
functions enabled redundant too.
As soon as WP raises the minimum to PHP 8, this is definitely the way to
go I'd say?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/60470#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list