[wp-trac] [WordPress Trac] #54362: Wrong Escaping Function
WordPress Trac
noreply at wordpress.org
Tue Nov 2 10:50:23 UTC 2021
#54362: Wrong Escaping Function
--------------------------+------------------------------
Reporter: chintan1896 | Owner: (none)
Type: defect (bug) | Status: assigned
Priority: normal | Milestone: Awaiting Review
Component: General | Version: trunk
Severity: normal | Resolution:
Keywords: has-patch | Focuses:
--------------------------+------------------------------
Comment (by dimadin):
`__()` is function used for translation. In this case, we are allowing
translators to change URL (to point to different language version of
`https://wordpress.org/plugins/`, for example
`https://de.wordpress.org/plugins/`,
`https://sr.wordpress.org/plugins/`...).
Output of `__()` should be escaped. There are some functions that merge
translating and escaping functions (`esc_attr__()`, `esc_html__()`...).
--
Ticket URL: <https://core.trac.wordpress.org/ticket/54362#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list