[wp-trac] [WordPress Trac] #56311: Week query variable is not being sanitized correctly
WordPress Trac
noreply at wordpress.org
Sun Aug 7 11:24:57 UTC 2022
#56311: Week query variable is not being sanitized correctly
---------------------------+------------------------------
Reporter: domainsupport | Owner: audrasjb
Type: defect (bug) | Status: assigned
Priority: normal | Milestone: Awaiting Review
Component: Query | Version:
Severity: normal | Resolution:
Keywords: | Focuses:
---------------------------+------------------------------
Comment (by domainsupport):
I may be wrong, but could this be very easily achieved by changing line
397 of `/wp-includes/class-wp-date-query.php` to ... ?
{{{#!php
<?php
if ( ! isset($_GET[$key]) && ( !
is_numeric( $_value ) || ! $is_between ) ) {
}}}
If so, would you like me to provide a patch?
Thanks,
Oliver
--
Ticket URL: <https://core.trac.wordpress.org/ticket/56311#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list