[wp-trac] [WordPress Trac] #3990: Links in titles block editing
links in dashboard
WordPress Trac
wp-trac at lists.automattic.com
Sun Mar 18 12:24:28 GMT 2007
#3990: Links in titles block editing links in dashboard
----------------------------+-----------------------------------------------
Reporter: elharo | Owner: anonymous
Type: defect | Status: new
Priority: high | Milestone: 2.0.10
Component: Administration | Version: 2.0.7
Severity: blocker | Keywords:
----------------------------+-----------------------------------------------
Another bug caused by markup in titles and this one's theme independent.
Steps to reproduce:
1. Create a post with a title containing a link like this:
<a href="http://www.cafeaulait.org/">Is This a Security Issue?</a>
2. Go to your the dashboard; i.e. blog/wp-admin. In the sidebar look at
the POSTS. The first post should now have a link like this:
<a href="editing link"><a href="http://www.cafeaulait.org/">Is This a
Security Issue?</a></a>
This is invalid, but in most browsers the link you follow when clicking
comes from the supplied title rather than the internal edit link for that
post.
I've verified this in 2.0.7 and others have verified it in the 2.1.3 RC
and the trunk.
I suspect the fix involves removing links, and probably all other markup
from the title before sticking it in the posts sidebar on the admin page.
Still to be determined: are there other pages in the admin section that
need this treatment? Can one inject JavaScript into the admin pages in
this fashion?
--
Ticket URL: <http://trac.wordpress.org/ticket/3990>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list