[wp-trac] [WordPress Trac] #7796: Export doesn't enclose comment content text in <![CDATA[ even though people can include stuff that breaks parsers in comments

WordPress Trac wp-trac at lists.automattic.com
Fri Sep 26 21:28:39 GMT 2008


#7796: Export doesn't enclose comment content text in <![CDATA[ even though people
can include stuff that breaks parsers in comments
-----------------------+----------------------------------------------------
 Reporter:  nyohannes  |       Owner:  anonymous
     Type:  defect     |      Status:  new      
 Priority:  normal     |   Milestone:  2.8      
Component:  General    |     Version:           
 Severity:  normal     |    Keywords:           
-----------------------+----------------------------------------------------
 It's common for people to link to stuff in a comment.

 If you export a blog using the exporter, <wp:comment_content> isn't
 escaped using a <![CDATA

 If someone included a url with valid url parameters in their comment text,
 e.g.,

 "Yes, the release notes are available at our online forum:
 http://www.intellij.net/forums/thread.jspa?threadID=274511&tstart=0"

 It would break any parsers trying to import that comment

-- 
Ticket URL: <http://trac.wordpress.org/ticket/7796>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list