[buddypress-trac] [BuddyPress] #2009: Tags in group name makes group inaccessible

buddypress-trac at lists.automattic.com buddypress-trac at lists.automattic.com
Wed May 5 04:31:39 UTC 2010


#2009: Tags in group name makes group inaccessible
--------------------+-------------------------------------------------------
 Reporter:  Ezd     |       Owner:  sushkov                 
     Type:  defect  |      Status:  assigned                
 Priority:  normal  |   Milestone:  1.2.4                   
Component:  Core    |    Keywords:  has-patch, needs-testing
--------------------+-------------------------------------------------------

Comment(by cnorris23):

 As apeatling stated, the slug is passed through sanitize_title(). The
 problem with "<oOoOoOoOoO(°_°)", and Edz's original example of "?", is a
 reflection of the limitations of sanitize_title() (more specifically PHP's
 strip_tags()). It's liberally designed to strip HTML and PHP tags, which
 is why "?" is stripped out. In the case of "<oOoOoOoOoO(°_°)", the issue
 is that there's no closing bracket. If you changed "<oOoOoOoOoO(°_°)" to
 "<o>OoOoOoOoO(°_°)", "o" within the brackets, and the brackets themselves,
 would be removed, but the rest would remain. WP utilizes the
 $fallback_title parameter of sanitize_title() to account for this
 scenario. WP uses the post_id as the fallback title, and BP could,
 respectively, use group_id.

-- 
Ticket URL: <https://trac.buddypress.org/ticket/2009#comment:12>
BuddyPress <http://buddypress.org/>
BuddyPress


More information about the buddypress-trac mailing list