[wp-trac] [WordPress Trac] #10041: like_escape() should escape backslashes too
WordPress Trac
noreply at wordpress.org
Tue Jun 10 22:37:30 UTC 2014
#10041: like_escape() should escape backslashes too
---------------------------------+-----------------------------
Reporter: miau_jp | Owner: wonderboymusic
Type: defect (bug) | Status: reopened
Priority: high | Milestone: 4.0
Component: Formatting | Version: 2.8
Severity: normal | Resolution:
Keywords: 4.0-early has-patch | Focuses:
---------------------------------+-----------------------------
Comment (by miqrogroove):
Replying to [comment:65 johnjamesjacoby]:
> There are a few places in r28712 where they are swapped out directly.
Indeed. And in a few places it wasn't possible. Even in core code.
The problem wasn't just with usage. The docs actually said like_escape()
was SQL safe even though it was not. So we have to anticipate that
message resulted in the function being used in many strange ways in
plugins.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/10041#comment:66>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list