[wp-trac] [WordPress Trac] #35528: Settings API output still not escaped
WordPress Trac
noreply at wordpress.org
Tue Jan 19 17:45:46 UTC 2016
#35528: Settings API output still not escaped
--------------------------+-----------------------------
Reporter: regodon | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 4.4.1
Severity: normal | Keywords:
Focuses: |
--------------------------+-----------------------------
I'm having a problem with do_settings_sections() not escaping or
urlenconding double quotes so it generates broken HTML whenever a stored
value contains double quotes.
I've seen these similar tickets:
https://core.trac.wordpress.org/ticket/22327 (fixed)
https://core.trac.wordpress.org/ticket/11253 (invalid)
--
Ticket URL: <https://core.trac.wordpress.org/ticket/35528>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list