Changeset 58843 for trunk/src/wp-includes/functions.php

Timestamp:

08/02/2024 10:36:27 PM (22 months ago)

Author:

peterwilsoncc

Message:

General: Use clean WordPress version in is_wp_version_compatible().

Update is_wp_version_compatible() to use wp_get_wp_version() introduced in [58813] to ensure the value of $wp_version has not been modified by a theme or plugin.

Props costdev, mukesh27, Cybr, sergeybiryukov.
Fixes #61781.

File:

• trunk/src/wp-includes/functions.php (modified) (2 diffs)

trunk/src/wp-includes/functions.php

@@ -8834 +8834 @@
  * @since 5.2.0
  *
- * @global string $wp_version The WordPress version string.
+ * @global string $_wp_tests_wp_version The WordPress version string. Used only in Core tests.
  *
  * @param string $required Minimum required WordPress version.
@@ -8840 +8840 @@
  */
 function is_wp_version_compatible( $required ) {
-    global $wp_version;
+    if (
+        defined( 'WP_RUN_CORE_TESTS' )
+        && WP_RUN_CORE_TESTS
+        && isset( $GLOBALS['_wp_tests_wp_version'] )
+    ) {
+        $wp_version = $GLOBALS['_wp_tests_wp_version'];
+    } else {
+        $wp_version = wp_get_wp_version();
+    }
 
     // Strip off any -alpha, -RC, -beta, -src suffixes.