[wp-trac] [WordPress Trac] #49430: XSS scripting in Post title
WordPress Trac
noreply at wordpress.org
Fri Jul 12 02:23:38 UTC 2024
#49430: XSS scripting in Post title
--------------------------+----------------------
Reporter: nayeeem | Owner: (none)
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: Security | Version: 5.3.2
Severity: normal | Resolution: invalid
Keywords: | Focuses:
--------------------------+----------------------
Comment (by dtbaker):
Just putting a helpful link here for others too:
**Why are some users allowed to post unfiltered HTML?**
https://make.wordpress.org/core/handbook/testing/reporting-security-
vulnerabilities/#why-are-some-users-allowed-to-post-unfiltered-html
--
Ticket URL: <https://core.trac.wordpress.org/ticket/49430#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list