[wp-trac] [WordPress Trac] #41925: Bring back, support and document %1$s support in wpdb->prepare
WordPress Trac
noreply at wordpress.org
Wed Sep 20 19:28:35 UTC 2017
#41925: Bring back, support and document %1$s support in wpdb->prepare
-------------------------+----------------------
Reporter: soulseekah | Owner:
Type: enhancement | Status: closed
Priority: normal | Milestone:
Component: Database | Version:
Severity: normal | Resolution: wontfix
Keywords: | Focuses:
-------------------------+----------------------
Comment (by pbiron):
As someone who manages several sites that are under constant injection
attacks, I fully support the security team's efforts to close the
vulnerability.
However, I also support the request from @soulseekah to leave this ticket
open in case someone can find a way that closes the vulnerability while
still allowing more expressive `sprintf()` args.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/41925#comment:13>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list