[wp-trac] [WordPress Trac] #56311: Week query variable is not being sanitized correctly
WordPress Trac
noreply at wordpress.org
Sat Jul 30 13:34:15 UTC 2022
#56311: Week query variable is not being sanitized correctly
---------------------------+------------------------------
Reporter: domainsupport | Owner: audrasjb
Type: defect (bug) | Status: assigned
Priority: normal | Milestone: Awaiting Review
Component: Query | Version:
Severity: normal | Resolution:
Keywords: | Focuses:
---------------------------+------------------------------
Changes (by domainsupport):
* keywords: reporter-feedback =>
Comment:
Yes, I noticed that at the same time whilst looking at that function ...
but a PHP error notice shouldn't be generated from a third party injection
of invalid date values in the query variables? (which is how we found this
issue)
Surely the 404 page should be quietly shown without littering the
debug.log?
Otherwise a PHP error notice would be shown every time a page / post slug
or ID wasn't found?
Thanks,
Oliver
--
Ticket URL: <https://core.trac.wordpress.org/ticket/56311#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list