[wp-trac] [WordPress Trac] #39779: rest_parse_request_arg
WordPress Trac
noreply at wordpress.org
Fri Feb 3 18:43:45 UTC 2017
#39779: rest_parse_request_arg
-------------------------+----------------------
Reporter: pissio | Owner:
Type: enhancement | Status: closed
Priority: normal | Milestone:
Component: REST API | Version: 4.7.2
Severity: normal | Resolution: invalid
Keywords: | Focuses:
-------------------------+----------------------
Changes (by SergeyBiryukov):
* status: new => closed
* resolution: => invalid
* milestone: Awaiting Review =>
Comment:
Hi @pissio, welcome to WordPress Core Trac!
As noted above, `rest_validate_request_arg()` is not the same as
`rest_sanitize_request_arg()`. The former checks if the argument matches
the requirements, the latter cleans it to remove potential malicious data.
This Codex article might be helpful to better understand the difference
between validation and sanitization:
https://codex.wordpress.org/Validating_Sanitizing_and_Escaping_User_Data
--
Ticket URL: <https://core.trac.wordpress.org/ticket/39779#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list