Changeset 34134

Timestamp:

09/14/2015 10:35:22 PM (9 years ago)

Author:

nbachiyski

Message:

Shortcodes: don't allow unclosed HTML elements in attributes

Location:

trunk/src/wp-includes

Files:

• media.php (modified) (1 diff)
• shortcodes.php (modified) (1 diff)

trunk/src/wp-includes/media.php

@@ -871 +871 @@
             $attr['caption'] = trim( $matches[2] );
         }
+    } elseif ( strpos( $attr['caption'], '<' ) !== false ) {
+        $attr['caption'] = wp_kses( $attr['caption'], 'post' );
     }
 

trunk/src/wp-includes/shortcodes.php

@@ -463 +463 @@
                 $atts[] = stripcslashes($m[8]);
         }
+
+        // Reject any unclosed HTML elements
+        foreach( $atts as &$value ) {
+            if ( false !== strpos( $value, '<' ) ) {
+                if ( 1 !== preg_match( '/^[^<]*+(?:<[^>]*+>[^<]*+)*+$/', $value ) ) {
+                    $value = '';
+                }
+            }
+        }
     } else {
         $atts = ltrim($text);