[wp-trac] [WordPress Trac] #23668: Check for empty slug input in register_taxonomy
WordPress Trac
noreply at wordpress.org
Tue Apr 9 04:53:24 UTC 2013
#23668: Check for empty slug input in register_taxonomy
--------------------------------------------------+--------------------
Reporter: cliffseal | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: 3.6
Component: Taxonomy | Version: 3.5.1
Severity: normal | Resolution:
Keywords: has-patch dev-feedback needs-testing |
--------------------------------------------------+--------------------
Comment (by ericlewis):
Replying to [comment:4 cliffseal]:
> Replying to [comment:3 SergeyBiryukov]:
> > Looks like [attachment:emptytax.diff] is missing
`sanitize_title_with_dashes()`. See [attachment:23668.patch].
>
> I'm not sure I understand. It runs `sanitize_title_with_dashes()` in the
next line in the `wp_parse_args()` call.
wp_parse_args favors the values in the first argument - so in
[attachment:emptytax.diff] the sanitize_title_with_dashes would have no
affect, since the array value of the first argument would be favored,
which would be the (potentially) unsanitized $taxonomy string.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/23668#comment:5>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list