[wp-trac] [WordPress Trac] #41413: incorrect esc in wp_nonce_url
WordPress Trac
noreply at wordpress.org
Sun Jul 23 15:36:45 UTC 2017
#41413: incorrect esc in wp_nonce_url
--------------------------+-----------------------------
Reporter: pbearne | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 2.0.4
Severity: normal | Keywords:
Focuses: |
--------------------------+-----------------------------
In wp_nonce_url() esc_html() is used to sanitize the output but the output
is a URL so esc_url() makes more sense
--
Ticket URL: <https://core.trac.wordpress.org/ticket/41413>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list