[wp-trac] [WordPress Trac] #56486: Securing (escaping) Output : escaping home_url() is missing in categories.php
WordPress Trac
noreply at wordpress.org
Fri Sep 2 11:05:15 UTC 2022
#56486: Securing (escaping) Output : escaping home_url() is missing in
categories.php
--------------------------+-----------------------------------------------
Reporter: krunal265 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Editor | Version: 6.0
Severity: normal | Resolution:
Keywords: has-patch | Focuses: administration, coding-standards
--------------------------+-----------------------------------------------
Comment (by krunal265):
Replying to [comment:1 SergeyBiryukov]:
> Hi there, welcome to WordPress Trac! Thanks for the ticket and the
patch.
>
> Please note that files in `wp-includes/blocks/` should not be patched
directly here in this repository. Instead, it would need to be fixed in
the [https://github.com/WordPress/gutenberg/tree/trunk/packages/block-
library block-library package upstream], specifically in the
[https://github.com/WordPress/gutenberg/blob/bf88267218995555a2f23a09009b840e3e103059/packages
/block-library/src/categories/index.php#L79 categories block], and then it
will be backported to core as part of package updates.
>
> Could you create an issue or PR at
https://github.com/WordPress/gutenberg? Thanks!
I have created an issue at [https://github.com/WordPress/gutenberg].
Thanks!
--
Ticket URL: <https://core.trac.wordpress.org/ticket/56486#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list