[wp-trac] [WordPress Trac] #27260: Lack of unslashing in privileged handler of the Heartbeat API
WordPress Trac
noreply at wordpress.org
Tue Mar 18 00:14:50 UTC 2014
#27260: Lack of unslashing in privileged handler of the Heartbeat API
-------------------------------------+---------------------
Reporter: TobiasBg | Owner: nacin
Type: defect (bug) | Status: closed
Priority: normal | Milestone: 3.9
Component: Autosave | Version: 3.6
Severity: normal | Resolution: fixed
Keywords: has-patch needs-testing | Focuses:
-------------------------------------+---------------------
Changes (by nacin):
* owner: => nacin
* status: new => closed
* resolution: => fixed
Comment:
In [changeset:"27576"]:
{{{
#!CommitTicketReference repository="" revision="27576"
Heartbeat: Hooks should always receive unslashed data.
This affects the privileged hooks; the unprivileged hooks already received
unslashed data.
props johnbillion, TobiasBg.
fixes #27260.
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/27260#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list