[wp-hackers] Paragraphs stripped from bio field

Ryan Boren ryan at boren.nu
Tue Jan 8 23:50:40 GMT 2008

On Jan 8, 2008 3:36 PM, Scot Hacker <shacker at birdhouse.org> wrote:
> Stick <p> tags in an author bio field, hit save. The <p> tags are
> gone. I found  a plugin to fix it:
> http://wordpress.org/extend/plugins/weasels-html-bios/
> but am curious why the bio field works this way. Bug or  feature?
> Actually, I think it would be great to have the author bio field be a
> TinyMCE field.

That plugin does this:

remove_filter('pre_user_description', 'wp_filter_kses');

Removing kses is not so good for security.  This would be better.

remove_filter('pre_user_description', 'wp_filter_kses');
add_filter('pre_user_description', 'wp_filter_post_kses');

Maybe we should have wp_filter_textarea_kses that allows more tags.
Not sure why <p> is not allowed in wp_filter_kses().


More information about the wp-hackers mailing list