[wp-trac] [WordPress Trac] #34983: shortcodes not working in input fields
WordPress Trac
noreply at wordpress.org
Thu Dec 10 17:29:16 UTC 2015
#34983: shortcodes not working in input fields
--------------------------+------------------------------
Reporter: mikelopez | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Shortcodes | Version: 4.4
Severity: normal | Resolution:
Keywords: | Focuses:
--------------------------+------------------------------
Comment (by mikelopez):
Btw, thanks to @ipstenu for pointing out in Slack that what I'm
recommending might be a security problem if say an editor assigns a post
to an admin.
Due to that, we can ignore my suggested patch as that's definitely
insecure.
Perhaps, instead of not processing the shortcode, maybe we can process the
shortcode and run its results against KSES?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/34983#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list