[wp-trac] [WordPress Trac] #13377: Add more sanitization in _cleanup_header_comment

WordPress Trac noreply at wordpress.org
Tue Sep 19 13:43:30 UTC 2017


#13377: Add more sanitization in _cleanup_header_comment
--------------------------+--------------------------
 Reporter:  seanklein     |       Owner:  johnbillion
     Type:  defect (bug)  |      Status:  reopened
 Priority:  normal        |   Milestone:  4.8.2
Component:  Security      |     Version:  3.0
 Severity:  normal        |  Resolution:
 Keywords:  fixed-major   |     Focuses:
--------------------------+--------------------------

Comment (by johnbillion):

 In [changeset:"41449"]:
 {{{
 #!CommitTicketReference repository="" revision="41449"
 General: Add missing URL-encoding and add extra hardening to plugin and
 template names when they're displayed in the admin area.

 Merges [41434] with changes to the 3.9 branch.

 See #13377
 }}}

--
Ticket URL: <https://core.trac.wordpress.org/ticket/13377#comment:19>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list