[wp-trac] [WordPress Trac] #63675: Sanitize request values and improve translatable strings in edit-comments.php
WordPress Trac
noreply at wordpress.org
Tue Jul 8 20:26:20 UTC 2025
#63675: Sanitize request values and improve translatable strings in edit-
comments.php
---------------------------+------------------------------
Reporter: sandippatel11 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Comments | Version:
Severity: minor | Resolution:
Keywords: 2nd-opinion | Focuses: administration
---------------------------+------------------------------
Changes (by sabernhardt):
* keywords: has-patch => 2nd-opinion
* version: 6.8 =>
Comment:
The `$comment_status`and `$delete_time` variables run through
`$wpdb->prepare()`, which returns a sanitized query string.
Regarding the translatable strings, I do not recommend refactoring them to
add HTML markup and a `%s` placeholder for a link intended to remain at
the end of the message. The [https://github.com/WordPress/wordpress-
develop/blob/trunk/src/wp-admin/edit-comments.php#L395-L415 three
messages] from [13247] have a consistent pattern, and they are already
translated in more than 120 language locales.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/63675#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list