[wp-gsoc] [Summer of Code] #342: Debug view is insecure
Summer of Code
noreply at wordpress.org
Wed Jul 31 04:15:22 UTC 2013
#342: Debug view is insecure
------------------------------+-------------------------------------
Reporter: frederick.ding | Type: defect
Status: new | Priority: normal
Milestone: 2013 Final (1.0) | Component: Migration & Portability
Keywords: |
------------------------------+-------------------------------------
As it stands, the debug view of the importer uses `var_dump()` to show the
contents of the option holding the state and data of the importer. This
has the unintended side effect of exposing all raw HTML from the import
file.
--
Ticket URL: <http://gsoc.trac.wordpress.org/ticket/342>
Summer of Code <http://gsoc.trac.wordpress.org>
My example project
More information about the wp-gsoc
mailing list