[wp-trac] [WordPress Trac] #15454: esc_textarea() for obvious textarea escaping function.
WordPress Trac
wp-trac at lists.automattic.com
Thu Dec 16 17:49:32 UTC 2010
#15454: esc_textarea() for obvious textarea escaping function.
-------------------------------------+-----------------------
Reporter: markjaquith | Owner:
Type: defect (bug) | Status: reopened
Priority: high | Milestone: 3.1
Component: General | Version: 3.1
Severity: major | Resolution:
Keywords: has-patch needs-testing |
-------------------------------------+-----------------------
Comment (by ryan):
Partial commit of rev3. I'll look at the remainder a little later. I
think the htmlspecialchars() on selection in press-this.php was added for
XSS reasons.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/15454#comment:14>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list