[wp-trac] [WordPress Trac] #14556: get_pagenum_link() vulnerable to XSS attacks
WordPress Trac
wp-trac at lists.automattic.com
Sat Aug 7 03:23:49 UTC 2010
#14556: get_pagenum_link() vulnerable to XSS attacks
--------------------------+-------------------------------------------------
Reporter: guigouz | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 3.0.1
Severity: normal | Keywords: reporter-feedback
--------------------------+-------------------------------------------------
Comment(by guigouz):
The code is here - http://robertbasic.com/blog/wordpress-paging-
navigation/
If you're not using mod_rewrite, wouldn't esc_url() mess with navigation ?
--
Ticket URL: <http://core.trac.wordpress.org/ticket/14556#comment:5>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list