[buddypress-trac] [BuddyPress Trac] #8576: Sanitize all possible Sort/Order variables
buddypress-trac
noreply at wordpress.org
Sat Nov 13 18:40:45 UTC 2021
#8576: Sanitize all possible Sort/Order variables
---------------------------------------------+--------------------------
Reporter: espellcaste | Owner: espellcaste
Type: enhancement | Status: closed
Priority: normal | Milestone: 10.0.0
Component: Core | Version:
Severity: normal | Resolution: fixed
Keywords: has-patch has-unit-tests commit |
---------------------------------------------+--------------------------
Changes (by espellcaste):
* status: assigned => closed
* resolution: => fixed
Comment:
In [changeset:"13147" 13147]:
{{{
#!CommitTicketReference repository="" revision="13147"
Sanitize all ORDER BY (ASC/DESC) values using the `bp_esc_sql_order`
helper function where possible.
BuddyPress is not consistent on how it escapes ORDER BY (ASC/DESC) values
provided by the developers/users. This commit improves that by using the
`bp_esc_sql_order` helper function where possible.
Props imath
Fixes #8576
}}}
--
Ticket URL: <https://buddypress.trac.wordpress.org/ticket/8576#comment:2>
BuddyPress Trac <http://buddypress.org/>
BuddyPress Trac
More information about the buddypress-trac
mailing list