[wp-trac] [WordPress Trac] #42653: % sign is changed to alphanumeric combination of numbers in curly braces, by core.
WordPress Trac
noreply at wordpress.org
Tue Nov 21 19:45:34 UTC 2017
#42653: % sign is changed to alphanumeric combination of numbers in curly braces,
by core.
---------------------------+----------------------------------
Reporter: hostingreview | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Query | Version: 4.9
Severity: normal | Resolution:
Keywords: 2nd-opinion | Focuses: template, multisite
---------------------------+----------------------------------
Changes (by johnjamesjacoby):
* keywords: => 2nd-opinion
Comment:
Replying to [comment:1 jeremyescott]:
> So you might want to review the whys behind 4.8.3's security patch.
>
> https://make.wordpress.org/core/2017/10/31/changed-behaviour-of-esc_sql-
in-wordpress-4-8-3/
>
> This isn't a bug, I'm pretty sure.
The hashing itself is intentional, but if you're seeing them, either
something is wrong or you've hooked in to the `query` filter before
they're swapped back.
See this comment from @otto42 specifically, which describes exactly the
issue you're seeing:
https://make.wordpress.org/core/2017/10/31/changed-behaviour-of-esc_sql-
in-wordpress-4-8-3/#comment-33156
I wasn't a ''huge'' fan of this approach for the reasons outlined above,
but I also don't have a better solution yet either.
Suggest to close as wontfix, but I've added the 2nd Opinion keyword to get
others to chime in. cc @pento.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/42653#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list