[wp-trac] [WordPress Trac] #58305: Login page title text is filterable but not escaped
WordPress Trac
noreply at wordpress.org
Sat Jul 1 11:56:13 UTC 2023
#58305: Login page title text is filterable but not escaped
------------------------------------+-------------------------------
Reporter: mahamudur78 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: 6.4
Component: Login and Registration | Version:
Severity: normal | Resolution:
Keywords: has-patch dev-feedback | Focuses: coding-standards
------------------------------------+-------------------------------
Changes (by oglekler):
* milestone: 6.3 => 6.4
Comment:
The login page is often modified to have a styling alongside the rest of
the site. Enqueued styles can be removed and by using `login_headertext`
filter any HTML can be added into h1, an image for example. Excepting HTML
will break this page branding and can cause problems.
Due to the lack of concrete decision about this issue, I am moving it to
the 6.4 milestone.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/58305#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list