[wp-trac] [WordPress Trac] #63943: Post Passwords over 255 are not controlled in Quick Edit, nor reported Server Level.

WordPress Trac noreply at wordpress.org
Fri Jan 16 11:32:20 UTC 2026 

#63943: Post Passwords over 255 are not controlled in Quick Edit, nor reported
Server Level.
-------------------------------------------------+-------------------------
 Reporter:  SirLouen                             |       Owner:  rishabhwp
     Type:  defect (bug)                         |      Status:  closed
 Priority:  normal                               |   Milestone:  Future
                                                 |  Release
Component:  Quick/Bulk Edit                      |     Version:  4.7
 Severity:  normal                               |  Resolution:  worksforme
 Keywords:  has-patch has-unit-tests report-     |     Focuses:
  upstream                                       |
-------------------------------------------------+-------------------------
Changes (by r1k0):

 * keywords:  has-patch has-unit-tests report-upstream needs-testing => has-
     patch has-unit-tests report-upstream
 * status:  assigned => closed
 * resolution:   => worksforme


Comment:

 == Test Report

 Patch tested: https://github.com/WordPress/wordpress-develop/pull/9776

 === Steps to Reproduce or Test

 1. In the admin dashboard, head over to **Posts > All posts**.
 2. Select the **Quick edit** option for any post.
 3. Enter a 255+ password in the password input box. In my case, I used a
 300-character password.
 4. Click the **Update** button and observe the page.

 === Expected Results

 - ✅ A validation error should pop up when you try to save a 255+
 password, and locking post should fail.

 === Actual Results

 - ❌ No validation error pops up; warning the user to use =< 255 password.
 The password is not saved, and the user is not informed that locking the
 post fails.

 === Attachment
 Saving password in quick edit before patch:

 [[Image(https://i.ibb.co/wh4Rp0JW/postpasswordvalidationbefore.gif)]]

 === Environment
 - WordPress: 7.0-alpha-61215-src
 - PHP: 8.2.29
 - Server: nginx/1.29.4
 - Database: mysqli (Server: 8.4.7 / Client: mysqlnd 8.2.29)
 - Browser: Chrome 143.0.0.0
 - OS: Linux
 - Theme: Twenty Twenty-Five 1.4
 - MU Plugins: None activated
 - Plugins:
   * Test Reports 1.2.1

 ==== Actual Results

 - ✅ Issue resolved with patch.
 - An error warns users that **Post password cannot be longer than 255**.

 === Attachment

 Saving password in quick edit after patch:

 [[Image(https://i.ibb.co/607nQm2p/postpasswordvalidationafter-1.gif)]]

 === Additional Notes
 - While in post edit page, the password gets truncated to 255 (as I
 mentioned [https://core.trac.wordpress.org/ticket/63943#comment:9
 earlier]) without informing user, this happens before and after patch.
 - I believe this should be fixedin Gutenberg.

 === Attachment
 Post password in **post edit page** (before and after):

 [[Image(https://i.ibb.co/JRnWtcLx/postpasswordvalidationguten.gif)]]

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/63943#comment:10>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list