[wp-trac] Re: [WordPress Trac] #3243: Usermeta and postmeta
functions assume
data to be pre-escaped (was: Usermeta functions assume data to be
pre-escaped)
WordPress Trac
wp-trac at lists.automattic.com
Mon Apr 27 13:58:11 GMT 2009
#3243: Usermeta and postmeta functions assume data to be pre-escaped
----------------------------+-----------------------------------------------
Reporter: markjaquith | Owner: markjaquith
Type: task (blessed) | Status: assigned
Priority: normal | Milestone: 2.9
Component: Administration | Version: 2.1
Severity: normal | Keywords: needs-patch
----------------------------+-----------------------------------------------
Changes (by Denis-de-Bernardy):
* keywords: hunt-irrelevant => needs-patch
Comment:
I'd love this to happen. Also for postmeta. But changing this now will
make soooo many security issues creep into old plugins.
Imo we should add a new set of functions, and deprecate the existing ones.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/3243#comment:7>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list