[wp-trac] [WordPress Trac] #19545: WXR Export File does not properly escape content in CDATA tags
WordPress Trac
wp-trac at lists.automattic.com
Wed Dec 14 16:03:36 UTC 2011
#19545: WXR Export File does not properly escape content in CDATA tags
--------------------------+-----------------------------
Reporter: splittingred | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Export | Version: 3.3
Severity: major | Keywords: needs-patch
--------------------------+-----------------------------
If you export a WXR file, and any content contains ]] tags, WordPress does
not properly escape them and this breaks the CDATA tag recognition,
terminating it early and preventing proper usage of XML parsers to read
the WXR file.
For example, this following export node would break the parser:
{{{
<wp:comment_content><![CDATA[ <a href="[[~11]]" rel="nofollow">my link</a>
]]></wp:comment_content>
}}}
--
Ticket URL: <http://core.trac.wordpress.org/ticket/19545>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list