[wp-trac] [WordPress Trac] #58336: Potential XSS on admin_body_class hook
WordPress Trac
noreply at wordpress.org
Wed Jun 21 15:00:48 UTC 2023
#58336: Potential XSS on admin_body_class hook
--------------------------+-----------------------------
Reporter: rafiem | Owner: SergeyBiryukov
Type: defect (bug) | Status: closed
Priority: normal | Milestone: 6.3
Component: Security | Version:
Severity: normal | Resolution: fixed
Keywords: | Focuses:
--------------------------+-----------------------------
Changes (by johnbillion):
* status: reopened => closed
* resolution: => fixed
Comment:
Thanks for the comments. It seems that there's nothing more to add to this
ticket so I'll re-close it, but the points above are important as it's
definitely not the responsibility of WordPress core to escape output from
all filters ''in general''. If this comes up in future tickets, let's
discuss it further.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/58336#comment:14>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list