[buddypress-trac] [BuddyPress] #3280: Invalid URLs are incorrectly handled
buddypress-trac at lists.automattic.com
buddypress-trac at lists.automattic.com
Mon Jun 13 19:53:46 UTC 2011
#3280: Invalid URLs are incorrectly handled
----------------------+-----------------
Reporter: DJPaul | Owner:
Type: defect | Status: new
Priority: blocker | Milestone: 1.3
Component: Core | Version:
Resolution: | Keywords:
----------------------+-----------------
Comment (by boonebgorges):
> As much as I really, really hate it, unless we want to whitelist URLs
for everything, I think we're going to have to put up with URLs like
/groups/valid/send-invites/ANYTHING/GOES/HERE/.
I don't think that's true. We can just change the logic in
groups_screen_group_invite() a bit. Working on a patch.
It's true that this is a huge PITA to fix, but it's good to do now, so we
can set some best practices for future dev.
--
Ticket URL: <https://buddypress.trac.wordpress.org/ticket/3280#comment:11>
BuddyPress <http://buddypress.org/>
BuddyPress
More information about the buddypress-trac
mailing list