[wp-trac] [WordPress Trac] #7933: wp_insert_attachment fails on
post name check
WordPress Trac
wp-trac at lists.automattic.com
Mon Oct 20 21:12:55 GMT 2008
#7933: wp_insert_attachment fails on post name check
----------------------------+-----------------------------------------------
Reporter: dwc | Owner: anonymous
Type: defect | Status: new
Priority: normal | Milestone: 2.7
Component: Administration | Version: 2.6.1
Severity: normal | Keywords:
----------------------------+-----------------------------------------------
This issue is the same as #6894 and #6934, but for attachments.
Basically, the wp_insert_attachment post name check fails under the same
conditions: if the sanitized title contains a URL-encoded character that
happens to match a printf type specifier, the post name check never
succeeds. The fix is the same as [7876] and [7877]: to use %s for the
parameter instead of direct variable substitution.
This issue affects 2.6.2. I haven't tested trunk, but it looks like it
still has the problem.
--
Ticket URL: <http://trac.wordpress.org/ticket/7933>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list