[wp-trac] [WordPress Trac] #60934: Internal Subnets are being blocked by wp_parse_url and why?
WordPress Trac
noreply at wordpress.org
Fri Apr 5 05:58:57 UTC 2024
#60934: Internal Subnets are being blocked by wp_parse_url and why?
-------------------------------------+------------------------------
Reporter: erenfro | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: HTTP API | Version: trunk
Severity: normal | Resolution:
Keywords: close reporter-feedback | Focuses:
-------------------------------------+------------------------------
Comment (by erenfro):
To clarify more on this with direct links:
* [https://github.com/Automattic/wordpress-
activitypub/blob/7ae3e7383d9c3fa1530940f7345b90b8e2bef642/includes/functions.php#L78
ActivityPub use of wp_http_validate_url]
*
[https://github.com/akirk/friends/blob/b04e45659bff29e2f99756ee09a45d5e12ab5e41/includes
/class-friends.php#L1218 Friends use wp_http_validate_url]
* [https://github.com/akirk/enable-mastodon-
apps/blob/c9fbb3b7c2017d4346acc4af6efb63670a0d917e/includes/class-
mastodon-api.php#L2388 Enable Mastodon Apps use of wp_http_validate_url]
Is this potential misuse of this function?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/60934#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list