[wp-trac] [WordPress Trac] #21241: Default value for background_image_thumb fails when background_image URL includes a percent sign
WordPress Trac
wp-trac at lists.automattic.com
Mon Jul 16 02:35:59 UTC 2012
#21241: Default value for background_image_thumb fails when background_image URL
includes a percent sign
--------------------------+-----------------------
Reporter: cfinke | Owner:
Type: defect (bug) | Status: reopened
Priority: normal | Milestone:
Component: Appearance | Version: 3.4.1
Severity: minor | Resolution:
Keywords: has-patch |
--------------------------+-----------------------
Changes (by cfinke):
* status: closed => reopened
* resolution: duplicate =>
Comment:
I disagree that this is a duplicate of #16330. That bug concerns
sanitizing the filenames of uploaded media; this bug concerns passing a
string through sprintf() without considering that it could include strings
that look like conversion specifications but aren't.
None of the fixes being discussed in #16330 would fix the bug presented by
a plugin setting background_image to a URL like
http://example.com/some%2Fbackground%2Fimage%2Furl.png.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/21241#comment:2>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list