[wp-trac] [WordPress Trac] #14361: the_title does not escape HTML special characters properly
WordPress Trac
wp-trac at lists.automattic.com
Tue Nov 23 00:07:41 UTC 2010
#14361: the_title does not escape HTML special characters properly
----------------------------+-----------------------------------------------
Reporter: peaceablewhale | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Future Release
Component: Template | Version: 3.0
Severity: normal | Keywords: needs-patch 2nd-opinion
----------------------------+-----------------------------------------------
Changes (by nacin):
* keywords: has-patch => needs-patch 2nd-opinion
* milestone: Awaiting Review => Future Release
Comment:
Woah, that'd break quite a bit. HTML is allowed inside the title.
We need to be careful not to break valid HTML if we would ever try to
account for escaping other characters that make up HTML.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/14361#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list