[wp-trac] Re: [WordPress Trac] #6992: Quotes in comment name prevent
"awaiting moderation" display
WordPress Trac
wp-trac at lists.automattic.com
Tue Nov 4 17:58:23 GMT 2008
#6992: Quotes in comment name prevent "awaiting moderation" display
-----------------------------------------+----------------------------------
Reporter: thomasperi | Owner:
Type: defect | Status: new
Priority: normal | Milestone: 2.7
Component: Comments | Version:
Severity: normal | Resolution:
Keywords: comments, quotes, has-patch |
-----------------------------------------+----------------------------------
Comment (by regulatethis):
BTW, this is happening because it grabs the comment author's name from the
comment_author_COOKIEHASH cookie, where it is urlencoded, and then
attempts to stick it directly into a query... At some point (not entirely
sure where), quotes in the string are turned into htmlspecialchars. This
is great for displaying this on a page but doesn't work so well in a SQL
query.
--
Ticket URL: <http://trac.wordpress.org/ticket/6992#comment:3>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list