[wp-trac] [WordPress Trac] #33848: Protect against vulnerability in Netscape 4?
WordPress Trac
noreply at wordpress.org
Thu Oct 13 22:24:29 UTC 2016
#33848: Protect against vulnerability in Netscape 4?
-------------------------------------------------+-------------------------
Reporter: dmsnell | Owner: pento
Type: enhancement | Status: closed
Priority: normal | Milestone: 4.7
Component: Security | Version: 1.0
Severity: normal | Resolution: fixed
Keywords: has-patch has-unit-tests dev- | Focuses:
feedback | performance
-------------------------------------------------+-------------------------
Changes (by pento):
* status: reviewing => closed
* resolution: => fixed
Comment:
In [changeset:"38785"]:
{{{
#!CommitTicketReference repository="" revision="38785"
KSES: Deprecate `wp_kses_js_entities()`.
This function was originally introduced to fix an XSS attack in Netscape
4, which never affected any other browsers, or later versions of Netscape.
I'm willing to go out on a limb, and say that we've officially dropped
security support for Netscape 4.
Props dmsnell, desrosj.
Fixes #33848.
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/33848#comment:18>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list