[wp-trac] [WordPress Trac] #34406: wp_kses_hair is too stringent redux
WordPress Trac
noreply at wordpress.org
Fri Oct 23 03:25:09 UTC 2015
#34406: wp_kses_hair is too stringent redux
-----------------------------+-----------------------------
Reporter: travisnorthcutt | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Formatting | Version: 1.5
Severity: normal | Keywords:
Focuses: |
-----------------------------+-----------------------------
Attributes from custom xml name spaces may use numbers, underscores, en
dashes, and em dashes, but the regex used inside `wp_kses_hair()` doesn't
allow them through. Technically, there are other allowed characters, but
that's probably getting into very fringe edge-case territory.
Admittedly, en and em dashes may be edge-case territory as well, so two
patches are provided: one allowing numbers and underscores, and one
additionally allowing en and em dashes.
Related: #17847
[http://www.w3.org/TR/html-markup/syntax.html#attribute-name Here's a link
to the W3C spec for reference.]
--
Ticket URL: <https://core.trac.wordpress.org/ticket/34406>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list