[wp-trac] [WordPress Trac] #3396: Plugin version, etc. not sanitized like description is
WordPress Trac
noreply at wordpress.org
Mon Feb 12 04:57:42 UTC 2024
#3396: Plugin version, etc. not sanitized like description is
----------------------------+--------------------------
Reporter: Viper007Bond | Owner: markjaquith
Type: defect (bug) | Status: closed
Priority: lowest | Milestone: 2.1
Component: Administration | Version: 2.1
Severity: minor | Resolution: fixed
Keywords: has-patch | Focuses:
----------------------------+--------------------------
Comment (by obnoskovpaivikki):
Should plugin version numbers and other related fields be sanitized
similarly to plugin descriptions using kses? Currently, plugin
descriptions are sanitized, but fields like version numbers are not. While
this isn't primarily a security concern, implementing consistent
sanitization across all fields could enhance overall code quality.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/3396#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list