Changeset 54550 for branches/3.9
- Timestamp:
- 10/17/2022 05:46:53 PM (2 years ago)
- Location:
- branches/3.9
- Files:
-
- 7 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/3.9
- Property svn:mergeinfo changed
/trunk merged: 54521-54523,54525,54527,54529,54541
- Property svn:mergeinfo changed
-
branches/3.9/src/wp-includes/comment.php
r27300 r54550 1816 1816 return 0; 1817 1817 1818 $filter_comment = false; 1819 if ( ! has_filter( 'pre_comment_content', 'wp_filter_kses' ) ) { 1820 $filter_comment = ! user_can( isset( $comment['user_id'] ) ? $comment['user_id'] : 0, 'unfiltered_html' ); 1821 } 1822 1823 if ( $filter_comment ) { 1824 add_filter( 'pre_comment_content', 'wp_filter_kses' ); 1825 } 1826 1818 1827 // Escape data pulled from DB. 1819 1828 $comment = wp_slash($comment); … … 1825 1834 1826 1835 $commentarr = wp_filter_comment( $commentarr ); 1836 1837 if ( $filter_comment ) { 1838 remove_filter( 'pre_comment_content', 'wp_filter_kses' ); 1839 } 1827 1840 1828 1841 // Now extract the merged array. -
branches/3.9/src/wp-includes/default-widgets.php
r33532 r54550 1013 1013 if ( is_wp_error($rss) ) { 1014 1014 if ( is_admin() || current_user_can('manage_options') ) 1015 echo '<p>' . sprintf( __('<strong>RSS Error</strong>: %s'), $rss->get_error_message() ) . '</p>';1015 echo '<p>' . sprintf( __('<strong>RSS Error</strong>: %s'), esc_html( $rss->get_error_message() ) ) . '</p>'; 1016 1016 return; 1017 1017 } … … 1125 1125 1126 1126 if ( !empty($error) ) 1127 echo '<p class="widget-error"><strong>' . sprintf( __('RSS Error: %s'), $error) . '</strong></p>';1127 echo '<p class="widget-error"><strong>' . sprintf( __('RSS Error: %s'), esc_html( $error ) ) . '</strong></p>'; 1128 1128 1129 1129 if ( $inputs['url'] ) : -
branches/3.9/src/wp-includes/functions.php
r46503 r54550 2335 2335 } else { 2336 2336 $html = __( 'Are you sure you want to do this?' ); 2337 if ( wp_get_referer() ) 2338 $html .= "</p><p><a href='" . esc_url( remove_query_arg( 'updated', wp_get_referer() ) ) . "'>" . __( 'Please try again.' ) . "</a>"; 2337 if ( wp_get_referer() ) { 2338 $wp_http_referer = remove_query_arg( 'updated', wp_get_referer() ); 2339 $wp_http_referer = wp_validate_redirect( esc_url_raw( $wp_http_referer ) ); 2340 $html .= '</p><p>'; 2341 $html .= sprintf( 2342 '<a href="%s">%s</a>', 2343 esc_url( $wp_http_referer ), 2344 __( 'Please try again.' ) 2345 ); 2346 } 2339 2347 } 2340 2348 -
branches/3.9/src/wp-includes/pluggable.php
r47966 r54550 331 331 $phpmailer->ClearCustomHeaders(); 332 332 $phpmailer->ClearReplyTos(); 333 $phpmailer->Body = ''; 334 $phpmailer->AltBody = ''; 333 335 334 336 // From email and name -
branches/3.9/src/wp-mail.php
r39781 r54550 60 60 wp_die( __('There doesn’t seem to be any new mail.') ); 61 61 } 62 63 // Always run as an unauthenticated user. 64 wp_set_current_user( 0 ); 62 65 63 66 for ( $i = 1; $i <= $count; $i++ ) { … … 124 127 $author = sanitize_email($author); 125 128 if ( is_email($author) ) { 126 echo '<p>' . sprintf(__('Author is %s'), $author) . '</p>';127 129 $userdata = get_user_by('email', $author); 128 130 if ( ! empty( $userdata ) ) { -
branches/3.9/src/wp-trackback.php
r25616 r54550 13 13 wp( array( 'tb' => '1' ) ); 14 14 } 15 16 // Always run as an unauthenticated user. 17 wp_set_current_user( 0 ); 15 18 16 19 /**
Note: See TracChangeset
for help on using the changeset viewer.