[wp-trac] Re: [WordPress Trac] #9656: Add missing filters for
values in edit-link-category-form.php
WordPress Trac
wp-trac at lists.automattic.com
Mon Apr 27 21:29:18 GMT 2009
#9656: Add missing filters for values in edit-link-category-form.php
-------------------------+--------------------------------------------------
Reporter: Simek | Owner: anonymous
Type: enhancement | Status: new
Priority: normal | Milestone: 2.8
Component: General | Version: 2.8
Severity: normal | Keywords: has-patch security
-------------------------+--------------------------------------------------
Changes (by hakre):
* keywords: has-patch => has-patch security
Comment:
is wp_specialchars() suitable within a textarea? (guess yes but I do not
properly know).
is the 'editable_slug' filter applicable to be used for category slugs?
if both questions can be answered with yes I think this patch looks good.
especially the attribute_escape call is important to prevent injection
issues.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/9656#comment:1>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list