[wp-trac] [WordPress Trac] #28506: Control (non-printing) characters not being stripped out.
WordPress Trac
noreply at wordpress.org
Wed Jun 25 04:01:54 UTC 2014
#28506: Control (non-printing) characters not being stripped out.
-------------------------------------------------+------------------
Reporter: mauteri | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: 4.0
Component: Formatting | Version: 3.8
Severity: normal | Resolution:
Keywords: needs-testing needs-unit-tests kses | Focuses:
-------------------------------------------------+------------------
Changes (by miqrogroove):
* keywords: has-patch needs-testing needs-unit-tests => needs-testing
needs-unit-tests kses
Comment:
This probably affects other areas like comment feeds then too. I've
brought up similar issues in the past and they were generally not treated
as security bugs.
Let's make this a kses issue as it's closer to validation and filtering
than the cosmetic features of texturize. Probably goes back to v1 which
is why I removed the trunk designation.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/28506#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list