Context Navigation

← Previous Ticket
Next Ticket →

Ticket #5484 (closed defect (bug): fixed)

Opened 4 years ago

Last modified 4 years ago

Escape POP3 error messages

Reported by:	xknown	Owned by:	anonymous
Priority:	normal	Milestone:	2.5
Component:	Security	Version:	2.3.1
Severity:	normal	Keywords:
Cc:

Description

All POP3 error messages in wp-mail.php should be properly escaped because it can be used to perform XSS attacks.

Attachments

wp-mail.diff (969 bytes) - added by xknown 4 years ago.

Change History

xknown — 4 years ago

attachment wp-mail.diff added

comment:1 ryan — 4 years ago

Status changed from new to closed
Resolution set to fixed

(In [6404]) Escape pop3 error messages. Props xknown. fixes #5484

comment:2 ryan — 4 years ago

(In [6487]) Escape pop3 error messages. Props xknown. fixes #5484 for 2.3

Note: See TracTickets for help on using tickets.

Download in other formats: