[wp-trac] [WordPress Trac] #49173: Allow sanitized inline styles on oEmbed iframes
WordPress Trac
noreply at wordpress.org
Sat Jan 11 21:39:07 UTC 2020
#49173: Allow sanitized inline styles on oEmbed iframes
--------------------------+------------------------------
Reporter: westonruter | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Embeds | Version: 4.4
Severity: normal | Resolution:
Keywords: | Focuses:
--------------------------+------------------------------
Comment (by westonruter):
Note that when the `style` attribute is allowed by Kses, the value is then
sanitized by `safecss_filter_attr()`.
Note also that the filtered HTML is cached, so in order to see this change
apply you'll need to delete the necessary oEmbed postmeta and transients.
For example:
{{{#!bash
wp transient delete --all
post_id=1822
for key in $(wp post meta list $post_id --fields=meta_key --format=csv |
grep _oembed_); do
wp post meta delete $post_id $key;
done
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/49173#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list