[wp-trac] [WordPress Trac] #52894: The wp_sanitize_script_attributes function added in version 5.7 does not escape attributes in some cases.
WordPress Trac
noreply at wordpress.org
Thu Mar 25 00:29:54 UTC 2021
#52894: The wp_sanitize_script_attributes function added in version 5.7 does not
escape attributes in some cases.
-------------------------------------------------+-------------------------
Reporter: tmatsuur | Owner:
| peterwilsoncc
Type: defect (bug) | Status: reopened
Priority: normal | Milestone: 5.7.1
Component: Script Loader | Version: 5.7
Severity: critical | Resolution:
Keywords: has-patch commit fixed-major dev- | Focuses:
feedback |
-------------------------------------------------+-------------------------
Changes (by peterwilsoncc):
* keywords: has-patch commit => has-patch commit fixed-major dev-feedback
* status: closed => reopened
* resolution: fixed =>
Comment:
Reopening for committing to the 5.7 branch.
Although it's not required until RC1, for my own piece of mind it would be
great if a second committer could sign-off on the backport with the `dev-
reviewed` keyword. Ta.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/52894#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list