WordPress.org
Get WordPress

Make WordPress Core

{1} All Tickets (8102 matches)

Create a new ticket
  • All active tickets
  • Sort by component, type, summary
  • Accepted tickets have an '*' appended to their owner's name

Results (6501 - 6600 of 8102)

56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76

Script Loader (14 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#20558 allow wp_localize_script data to be added to existing objects dev-feedback normal normal enhancement 06/04/2019 6
#13078 Make wp_register_style and wp_enqueue_style consistent has-patch normal normal defect (bug) 06/04/2019 3
#47350 Add method to get JSON from a file without using file_get_contents() normal normal Awaiting Review enhancement 05/22/2019 3
#15833 Script concatenation fails to take external dependencies into account. normal normal Future Release defect (bug) 05/21/2019
#45106 Concerns related to moving mce_external_plugins filter to WP_Scripts::__construct normal normal Awaiting Review defect (bug) 01/16/2019
#43825 Style/script loading infrastructure: Etag header as a hash of script/style handles and their corresponding versions normal normal Awaiting Review enhancement 01/16/2019
#37162 wp_style_add_data and wp_script_add_data should accept SRI information normal normal Awaiting Review enhancement 11/14/2018 2
#39991 jQuery UI Datepicker Localization Error with PHP date 'S' has-patch normal normal Future Release defect (bug) 10/25/2018 6
#45008 Inconsistent use of 'script_loader_src' and 'style_loader_src' filters when performing concatenation has-patch normal normal Awaiting Review defect (bug) 09/27/2018
#17916 Enqueued styles are only printed on login_footer in wp-login.php dev-feedback normal normal Future Release defect (bug) 08/10/2018 38
#43900 Add hint about blocked Javascript as possible error reason in script-loader.php normal normal Awaiting Review defect (bug) 05/02/2018 8
#43781 adding apply_filters on $handle in localize normal normal Awaiting Review enhancement 04/16/2018 1
#42440 Uncaught TypeError: $(...).wpColorPicker is not a function normal normal Awaiting Review defect (bug) 11/06/2017 1
#38800 add WP_ADMIN_URL and WP_INCLUDES_URL constants normal normal Awaiting Review enhancement 09/29/2017 3

Security (54 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#65054 $_GET['pagenow'] and $_GET['widget'] unsanitized in dashboard AJAX handler rajeshcp has-patch normal major Awaiting Review defect (bug) 04/09/2026 1
#65052 Nonce check order flaw in post-quickdraft-save rajeshcp has-patch normal major Awaiting Review defect (bug) 04/09/2026 2
#64245 Update bundled root certificates for 7.0 desrosj has-patch normal normal 7.0 task (blessed) 04/01/2026 7
#64969 Update bundled root certificates for 7.1 normal normal 7.1 task (blessed) 03/27/2026
#64789 Security audit for API key storage on the Connectors screen normal normal 7.0 task (blessed) 03/24/2026 10
#30465 Dashboard alert if a plugin/theme was removed from WordPress repo dev-feedback normal normal Future Release feature request 02/24/2026 67
#56391 safecss_filter_attr(): support rgba background-color has-patch normal normal defect (bug) 02/13/2026 13
#51159 Let's expand our context specific escaping methods for wp_json_encode(). normal normal Awaiting Review enhancement 01/15/2026 7
#64481 Explore Sec-Fetch Headers as a Core-Supported CSRF Mitigation Mechanism normal normal Awaiting Review enhancement 01/08/2026 1
#60864 URL sanitizing strips valid characters instead of encoding, documented use is invalid has-patch normal normal Awaiting Review defect (bug) 01/04/2026 5
#43215 Allow wp_kses to pass allowed CSS properties normal normal Awaiting Review feature request 11/19/2025 4
#32067 Remove inline javascript from WP-Core to allow CSP protection normal normal Future Release feature request 10/21/2025 21
#63940 Prevent POST flood cache bypass attacks normal normal Awaiting Review defect (bug) 09/06/2025
#56141 Enhance installer security dev-feedback high major Future Release enhancement 08/30/2025 15
#58679 meta key field in usermeta table should NOT use accent insensitive collations normal major Awaiting Review defect (bug) 08/19/2025 1
#63727 A new function to sanitize an array dev-feedback normal normal Awaiting Review enhancement 07/28/2025 11
#38474 wp_signups.activation_key stores activation keys in plain text SergeyBiryukov dev-feedback normal normal Future Release enhancement 06/20/2025 21
#63457 WordPress 6.8 will fail creating bcrypt when entropy sources are not available reporter-feedback normal normal Awaiting Review defect (bug) 05/18/2025 2
#37757 Add `allowed_classes` to `maybe_unserialize` When WordPress is running on PHP 7+ dev-feedback normal normal Awaiting Review enhancement 04/24/2025 14
#63329 Use check_ajax_referer() instead of check_admin_referer() for AJAX requests in media form handling. has-patch normal normal Awaiting Review enhancement 04/22/2025 1
#63259 Replace zxcvbn with zxcvbn-ts normal normal Awaiting Review defect (bug) 04/11/2025 4
#53973 WordPress <= 5.8 - Authenticated Persistent XSS (User role name) has-patch normal normal Future Release defect (bug) 03/12/2025 13
#61706 Support for storing and getting encrypted options dev-feedback normal normal Awaiting Review enhancement 02/18/2025 1
#62949 HttpOnly flag for the post password cookie dev-feedback normal normal Awaiting Review enhancement 02/12/2025
#36177 default htaccess should include security measures normal normal Awaiting Review enhancement 12/24/2024 23
#62693 check if chmod is available to prevent Fatal Errors normal normal Awaiting Review defect (bug) 12/14/2024 2
#62384 .htaccess lacks normal normal Awaiting Review enhancement 12/09/2024 1
#56860 Sodium Compat library is improperly loaded normal normal Awaiting Review defect (bug) 11/19/2024
#28521 FORCE_SSL constant for really forcing SSL adamsilverstein normal normal Future Release enhancement 11/19/2024 26
#62134 Security Issue in WordPress Core normal normal defect (bug) 10/14/2024 5
#62202 allow plugin versions to be flagged as security updates close normal normal Awaiting Review feature request 10/10/2024 5
#20140 Ask old password to change user password dev-feedback normal major Future Release feature request 07/28/2024 22
#53902 Automating the creation of inline javascript and inline stylesheet nonces or hashes normal normal Awaiting Review feature request 07/03/2024 4
#37000 Support for the SameSite cookie attribute dev-feedback normal normal Future Release enhancement 06/06/2024 45
#60470 Use `filter_input` instead of superglobals where possible normal normal Awaiting Review enhancement 02/09/2024 3
#51407 Remove inline event handlers and JavaScript URIs for Strict CSP-compatibility adamsilverstein dev-feedback normal normal Future Release enhancement 12/26/2023 15
#58636 Automatic Sanitization of Nonces in wp_verify_nonce normal normal Awaiting Review enhancement 06/26/2023
#55514 2FA by default for WordPress normal normal Awaiting Review feature request 03/06/2023 3
#57447 wp_ajax_inline_save function does not check if post has "public" or "show_ui" enabled normal normal Awaiting Review defect (bug) 01/11/2023
#57424 Specific hook for Content Security Policy normal normal Awaiting Review enhancement 01/05/2023
#56521 wp_kses wp_kses_hair fails to allow a valueless attribute when is follwed by / has-patch normal major Awaiting Review defect (bug) 09/06/2022 1
#40237 Educate users about modern password best-practices normal normal Awaiting Review enhancement 06/06/2022 9
#51438 Use CSP directive upgrade-insecure-requests when using HTTPS needs-unit-tests normal normal Future Release enhancement 11/09/2021 4
#53994 REST API requests with session cookies but an invalid/missing nonce are considered authenticated for most of the request normal normal Awaiting Review defect (bug) 08/24/2021
#53869 Post type / Taxonomy Label Hardening: Prevent Raw HTML tags in output / Media Library eval of HTML entities in label has-patch normal normal Awaiting Review defect (bug) 08/04/2021 3
#23165 Admin validation errors on form nonce element IDs (_wpnonce) has-patch normal normal Awaiting Review enhancement 02/08/2021 17
#52333 Lack of the &colon; entity on the list of allowed entity names in kses.php has-patch normal minor Awaiting Review defect (bug) 01/20/2021
#51611 Escape echoing Core functions normal normal Awaiting Review enhancement 10/24/2020 1
#36087 Migration plan from insecure RNG fallback normal normal Future Release enhancement 09/30/2020 3
#31686 wp_authenticate_username_password() should check for a WP_Error object reporter-feedback normal normal Awaiting Review defect (bug) 08/06/2019 6
#37264 Please do not chmod 666 the wp-config.php file on installation. has-patch normal normal Awaiting Review defect (bug) 03/22/2019 9
#44058 Include security sniffs in PHPCS ruleset normal normal Future Release enhancement 05/16/2018 3
#43320 Harden API requests against man-in-the-middle attacks low minor Awaiting Review enhancement 02/18/2018 2
#41391 Links to media in password protected pages normal normal Awaiting Review defect (bug) 07/24/2017 1

Shortcodes (32 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#50683 Parse content for shortcodes instead of using regex has-patch normal normal Future Release enhancement 03/30/2026 41
#26649 escaped shortcodes should not be expanded during 'get_the_excerpt' dev-feedback normal normal 7.1 defect (bug) 03/17/2026 39
#54289 Improve get_shortcode_regex performance has-patch normal normal Future Release enhancement 10/14/2025 9
#25644 strip_shortcodes always removes text between shortcode tags, should be optional dev-feedback normal normal enhancement 07/21/2025 6
#47863 Fix odd, unexpected output from shortcode_parse_attts SergeyBiryukov dev-feedback normal normal Future Release defect (bug) 07/16/2025 33
#58366 Shortcode Support Regained but Content Filters are messing with Shortcode HTML needs-unit-tests normal normal Future Release defect (bug) 05/22/2025 95
#57790 Parsing of Shortcode Attributes: bug locating a final attribute dev-feedback normal normal Awaiting Review defect (bug) 03/18/2025 2
#40958 force_balance_tags breaks Ninjaforms and probably other plugins that output html within js. normal normal Awaiting Review defect (bug) 02/21/2025 6
#62752 Enhance Audio and Video Shortcodes with Custom Features (Tracklist, Images, Artists, Track Numbers, and Media Handling) dev-feedback normal normal Awaiting Review feature request 01/02/2025 2
#62454 [ wp-includes/shortcodes.php - do_shortcode() ] - fallback in case content is not a string dev-feedback normal trivial Awaiting Review enhancement 11/19/2024 4
#59509 Shortcode attributes named 0 are ignored needs-unit-tests normal normal Awaiting Review defect (bug) 10/25/2024 4
#44571 force_balance_tags breaks JavaScript normal normal Awaiting Review defect (bug) 09/22/2024 2
#61007 Shortcode aren't paste inline in paragraphs normal major Awaiting Review defect (bug) 08/24/2024 7
#43457 `wp_html_split` valid HTML attributes issues has-patch normal normal Awaiting Review defect (bug) 05/28/2024 5
#60887 After upgrade to WordPress 6.4.3, do_shortcode no longer works in page templates normal critical Awaiting Review defect (bug) 04/02/2024
#60200 Search functionality does not search shortcodes normal normal Awaiting Review enhancement 01/06/2024
#58174 A shortcode block that evaluates to nothing, renders as a space in the HTML normal normal Awaiting Review defect (bug) 10/26/2023 3
#58386 Shortcode generated by a block element is not executed in templates normal normal Awaiting Review defect (bug) 06/09/2023 4
#58469 Changeset 55832 broke shortcodes saved in block attributes and rendered serverside normal normal Awaiting Review defect (bug) 06/07/2023 1
#52567 Shortcodes in separate <p> tags appear on same line in browser normal normal Awaiting Review defect (bug) 05/25/2023 1
#58397 Shortcodes in patterns are not rendered in templates normal normal Awaiting Review defect (bug) 05/24/2023
#57267 wp_enqueue_style is not working under shortcode reporter-feedback normal normal Awaiting Review defect (bug) 12/15/2022 1
#55406 Shortcodes don't work inside srcset attribute normal normal Awaiting Review defect (bug) 04/08/2022
#47616 Enhancement: doing_shortcode() function similar to doing_filter() audrasjb* needs-unit-tests normal normal Future Release enhancement 11/09/2021 17
#37183 Nested shortcodes in new-style [caption] dev-feedback normal normal defect (bug) 05/08/2021 3
#51377 Front End elements break after too many shortcodes reporter-feedback normal normal Awaiting Review defect (bug) 09/24/2020 2
#49877 Content enclosed by (content enclosing) shortcode gets stripped from excerpt dev-feedback normal normal Awaiting Review defect (bug) 07/24/2020 5
#43725 Multiple instances of opening / closing shortcode only works when closing tag is provided normal normal Future Release defect (bug) 07/16/2020 1
#49955 Shortcode escaping not correctly handled when followed by enclosing shortcodes normal normal Awaiting Review defect (bug) 07/16/2020 2
#42718 Video shortcode needs muted attribute for Autoplay to work with Safari 11.0.1+ has-patch normal normal Awaiting Review defect (bug) 07/10/2020 8
#47984 Filter pre_do_shortcode has-patch normal normal Awaiting Review feature request 09/05/2019
#36958 extending has_shortcode to allow searching in custom fields normal normal enhancement 06/04/2019 1
56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76
Note: See TracReports for help on using and creating reports.