WordPress.org

Make WordPress Core

Ticket #28506: 28506_1.diff

File 28506_1.diff, 453 bytes (added by mauteri, 5 years ago)

New patch based on recent feedback

  • wp-includes/kses.php

     
    995995 * @return string
    996996 */
    997997function wp_kses_no_null($string) {
    998         $string = preg_replace('/\0+/', '', $string);
     998        $string = preg_replace('/[\x00-\x08\x0B\x0C\x0E-\x1F]/', '', $string);
    999999        $string = preg_replace('/(\\\\0)+/', '', $string);
    10001000
    10011001        return $string;