[wp-trac] [WordPress Trac] #11833: bizarre behavior in the comment form sanitization
WordPress Trac
wp-trac at lists.automattic.com
Fri Apr 16 19:05:58 UTC 2010
#11833: bizarre behavior in the comment form sanitization
-------------------------------+--------------------------------------------
Reporter: Denis-de-Bernardy | Owner: ryan
Type: defect (bug) | Status: new
Priority: normal | Milestone: 3.0
Component: Security | Version: 3.0
Severity: normal | Keywords:
-------------------------------+--------------------------------------------
Changes (by nacin):
* milestone: 2.9.3 => 3.0
Comment:
{{{
<a
href =
http://foo:bar@foo.com#?#
<a
href = http://foo.com?\"'
>test</a>
}}}
Is technically counted as one link.
We can change the regex in one of three ways (documented in #11830), and
all would fix that. I otherwise see no bug.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/11833#comment:15>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list