[wp-trac] [WordPress Trac] #24738: id attributes populated by comment_ID() are not escaped
WordPress Trac
noreply at wordpress.org
Fri Jul 12 22:06:01 UTC 2013
#24738: id attributes populated by comment_ID() are not escaped
--------------------------+-----------------------------
Reporter: kwight | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Comments | Version: trunk
Severity: normal | Keywords: has-patch
--------------------------+-----------------------------
The core comment templates use `comment_ID()` to help populate some `id`
attributes. `comment_ID()` is filterable, and should be escaped.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/24738>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list