[wp-trac] Re: [WordPress Trac] #3069: User description (profile) is
stored in database html entity encoded
WordPress Trac
wp-trac at lists.automattic.com
Fri Aug 25 13:19:21 GMT 2006
#3069: User description (profile) is stored in database html entity encoded
-----------------------------------+----------------------------------------
Reporter: markjaquith | Owner: markjaquith
Type: defect | Status: assigned
Priority: normal | Milestone: 2.1
Component: General | Version: 2.1
Severity: normal | Resolution:
Keywords: has-patch 2nd-opinion |
-----------------------------------+----------------------------------------
Changes (by markjaquith):
* keywords: => has-patch 2nd-opinion
* status: new => assigned
* owner: anonymous => markjaquith
Comment:
Patch removes call to wp_specialchars();
This will need a security check to make sure that wp_specialchars() call
wasn't protecting against script injection. It's already kses'd via
filters, however.
--
Ticket URL: <http://trac.wordpress.org/ticket/3069>
WordPress Trac <http://wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list