[wp-trac] [WordPress Trac] #52457: WordPress vulnerable to search-reflected webspam
WordPress Trac
noreply at wordpress.org
Mon Feb 15 13:31:41 UTC 2021
#52457: WordPress vulnerable to search-reflected webspam
-------------------------------------------------+-------------------------
Reporter: abagtcs | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: 5.7
Component: General | Version:
Severity: normal | Resolution:
Keywords: has-patch needs-testing needs-unit- | Focuses: template
tests |
-------------------------------------------------+-------------------------
Comment (by poena):
I tested this by applying PR 996, performing a search, and viewing the
source of the search result page.
{{{<meta name='robots' content='noindex, follow, max-image-preview:large'
/>}}} is output in the head.
I then followed the testing instructions from
[https://core.trac.wordpress.org/ticket/51511#comment:20
51511#comment:20]. Removing the filter(s) works correctly. I did not test
on multisite.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/52457#comment:9>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list