WordPress.org

Make WordPress Core

Opened 3 years ago

Closed 3 years ago

Last modified 3 years ago

#12417 closed defect (bug) (fixed)

XSS in wp-admin/options.php

Reported by: Denis-de-Bernardy Owned by: ryan
Priority: normal Milestone: 3.0
Component: Security Version: 2.9.2
Severity: normal Keywords:
Cc:

Description

There are quite a few lines in there, such as:

<th scope='row'><label for='$option->option_name'>$option->option_name</label></th>

Change History (4)

comment:1 nacin3 years ago

  • Milestone changed from 2.9.3 to 3.0

I just patched this, then realized we esc_attr() at the top of the loop, so we're secure here.

I'm going to move the esc_attr() down further so it's more obvious.

comment:2 nacin3 years ago

  • Resolution set to fixed
  • Status changed from new to closed

(In [13471]) Make it more obvious we're escaping values in options.php. fixes #12417

comment:3 Denis-de-Bernardy3 years ago

I think you broke the label tag, in r13471.

comment:4 nacin3 years ago

Correct. Second changeset didn't get posted here. r13472

Note: See TracTickets for help on using tickets.