Make WordPress Core

Context Navigation

{1} All Tickets (8010 matches)

Create a new ticket

All active tickets
Sort by component, type, summary
Accepted tickets have an '*' appended to their owner's name

Results (6401 - 6500 of 8010)

← 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 →

Script Loader (37 matches)

Ticket	Summary	Owner	Workflow	Priority	Severity	Milestone	Type	Modified	Comments
#62709	Script modules integration with wp_resource_hints			normal	minor	Awaiting Review	enhancement	12/19/2024	2
#55184	Custom style handle attached to a custom block style is never load even if the block is in the page.		has-patch	normal	normal	Awaiting Review	defect (bug)	01/22/2025	10
#40602	Implement immutable cache headers	pbearne	has-patch	normal	normal	Future Release	enhancement	02/12/2025	6
#63043	script-loader 'colors' src true invalid argument		has-patch	normal	normal	Awaiting Review	defect (bug)	03/03/2025	2
#63179	Dependencies should load in the footer if the script is loaded in the footer			normal	normal	Awaiting Review	defect (bug)	03/27/2025	1
#60234	Script Modules API: Add a translations API			normal	normal	Awaiting Review	enhancement	05/06/2025	2
#55639	Implement Async CSS			normal	normal	Awaiting Review	enhancement	06/10/2025	2
#61657	Script "in_footer" => false with "defer" will make all dependencies that are not deferred load in head		reporter-feedback	normal	normal	Awaiting Review	defect (bug)	06/10/2025	1
#59076	Proposal for removing the version numbers of the JS and CSS files when SCRIPT_DEBUG is set to true		close	normal	normal	Awaiting Review	enhancement	08/12/2025	1
#40276	enhancement: add a $type parameter to wp_add_inline_script()		dev-feedback	normal	normal	Awaiting Review	enhancement	08/12/2025	4
#36449	When concatenating styles in script-loader dependencies may not be honoured.			normal	normal		defect (bug)	08/12/2025	2
#36448	When concatenating scripts in script-loader dependencies may not be honoured.			normal	normal		defect (bug)	08/12/2025	2
#36779	Move /wp-admin/load-scripts.php and /wp-admin/load-styles.php to /wp-includes		close	normal	normal		defect (bug)	08/12/2025	1
#51124	Can we get an additional parameter in wp_add_inline_script to set the script type?	audrasjb*	needs-unit-tests	normal	normal	Future Release	feature request	08/13/2025	15
#38548	Add new filters on wp_script_is/wp_style_is		close	normal	normal	Awaiting Review	enhancement	08/13/2025	1
#61755	Use WPINC constant in script-loader.php		close	normal	normal	Awaiting Review	defect (bug)	08/14/2025	1
#44211	Add cookie domain to `userSettings` script localize		close	normal	normal	Awaiting Review	feature request	08/14/2025	1
#52320	Empty entries in WP_Scripts 'extra' field			normal	trivial	Awaiting Review	defect (bug)	08/14/2025	1
#63793	Parser-blocking scripts should render last in all cases to speed up page load		has-patch	normal	normal	Future Release	enhancement	08/18/2025	17
#63693	wp_should_load_block_assets_on_demand doing it wrong too early			normal	normal	Awaiting Review	defect (bug)	08/21/2025	1
#40485	Add function for retrieving metadata from registered script		dev-feedback	normal	normal	Awaiting Review	feature request	08/21/2025	2
#47322	scenario based-bug in the file load-style.php			normal	normal	Awaiting Review	defect (bug)	09/01/2025	2
#63908	Style concatenation may duplicate inline styles			normal	normal	Awaiting Review	defect (bug)	09/03/2025	1
#61771	Script Modules: add the importmap's scopes key		close	normal	normal	Awaiting Review	enhancement	09/04/2025	1
#61500	Script Modules: Allow scripts to depend on modules		has-patch	normal	normal	Awaiting Review	enhancement	10/01/2025	8
#58873	Add function to pass variables to scripts			normal	normal	Future Release	feature request	10/04/2025	12
#64087	Deprecated urlencode() passing null warning during load-styles.php because get_stylesheet_directory() returns empty		dev-feedback	normal	minor	Awaiting Review	defect (bug)	10/08/2025	1
#63805	Extend the existing conditional loading optimization for block-specific global styles from core blocks to include third-party blocks, improving performance by only loading styles for blocks actually present on the page.		has-patch	normal	normal	Future Release	enhancement	10/14/2025	13
#54018	Allow scripts registered via block.json to be enqueued in the footer		has-patch	normal	normal	Future Release	enhancement	10/16/2025	28
#58302	Deprecate and disable the unused compression_test() and wp_ajax_wp_compression_test()		has-patch	normal	normal	Future Release	enhancement	10/19/2025	14
#57548	Stop concatenating scripts and stylesheets in wp-admin and retire load-scripts.php and load-styles.php			normal	normal	Future Release	enhancement	10/19/2025	16
#60597	Script Modules API: Allow list of enqueued module data to be exposed	westonruter	has-patch	normal	normal	Future Release	enhancement	10/27/2025	20
#63017	Compression via PHP documented and in URL but not used anymore		has-patch	normal	normal	Future Release	defect (bug)	10/31/2025	10
#64229	Enqueueing scripts and script modules should warn when dependencies are missing			normal	normal	7.0	enhancement	11/11/2025
#64015	Reconsider removal of import map polyfill			normal	normal	7.0	defect (bug)	11/11/2025	4
#61625	Styles enqueued from block.json are not correctly configured for RTL	westonruter*		normal	normal	7.0	defect (bug)	11/12/2025	4
#63887	Add sourceURL to inline scripts and styles	jonsurrell	has-patch	normal	normal	6.9	enhancement	11/14/2025	65
Security (51 matches)
Ticket	Summary	Owner	Workflow	Priority	Severity	Milestone	Type	Modified	Comments
#41391	Links to media in password protected pages			normal	normal	Awaiting Review	defect (bug)	07/24/2017	1
#43320	Harden API requests against man-in-the-middle attacks			low	minor	Awaiting Review	enhancement	02/18/2018	2
#44058	Include security sniffs in PHPCS ruleset			normal	normal	Future Release	enhancement	05/16/2018	3
#37264	Please do not chmod 666 the wp-config.php file on installation.		has-patch	normal	normal	Awaiting Review	defect (bug)	03/22/2019	9
#31686	wp_authenticate_username_password() should check for a WP_Error object		reporter-feedback	normal	normal	Awaiting Review	defect (bug)	08/06/2019	6
#36087	Migration plan from insecure RNG fallback			normal	normal	Future Release	enhancement	09/30/2020	3
#51611	Escape echoing Core functions			normal	normal	Awaiting Review	enhancement	10/24/2020	1
#52333	Lack of the &colon; entity on the list of allowed entity names in kses.php		has-patch	normal	minor	Awaiting Review	defect (bug)	01/20/2021
#23165	Admin validation errors on form nonce element IDs (_wpnonce)		has-patch	normal	normal	Awaiting Review	enhancement	02/08/2021	17
#53869	Post type / Taxonomy Label Hardening: Prevent Raw HTML tags in output / Media Library eval of HTML entities in label		has-patch	normal	normal	Awaiting Review	defect (bug)	08/04/2021	3
#53994	REST API requests with session cookies but an invalid/missing nonce are considered authenticated for most of the request			normal	normal	Awaiting Review	defect (bug)	08/24/2021
#51438	Use CSP directive upgrade-insecure-requests when using HTTPS		needs-unit-tests	normal	normal	Future Release	enhancement	11/09/2021	4
#40237	Educate users about modern password best-practices			normal	normal	Awaiting Review	enhancement	06/06/2022	9
#56521	wp_kses wp_kses_hair fails to allow a valueless attribute when is follwed by /		has-patch	normal	major	Awaiting Review	defect (bug)	09/06/2022	1
#57424	Specific hook for Content Security Policy			normal	normal	Awaiting Review	enhancement	01/05/2023
#57447	wp_ajax_inline_save function does not check if post has "public" or "show_ui" enabled			normal	normal	Awaiting Review	defect (bug)	01/11/2023
#55514	2FA by default for WordPress			normal	normal	Awaiting Review	feature request	03/06/2023	3
#58636	Automatic Sanitization of Nonces in wp_verify_nonce			normal	normal	Awaiting Review	enhancement	06/26/2023
#51407	Remove inline event handlers and JavaScript URIs for Strict CSP-compatibility	adamsilverstein	dev-feedback	normal	normal	Future Release	enhancement	12/26/2023	15
#60470	Use `filter_input` instead of superglobals where possible			normal	normal	Awaiting Review	enhancement	02/09/2024	3
#60864	URL sanitizing strips valid characters instead of encoding, documented use is invalid		has-patch	normal	normal	Awaiting Review	defect (bug)	04/03/2024	4
#37000	Support for the SameSite cookie attribute		dev-feedback	normal	normal	Future Release	enhancement	06/06/2024	45
#53902	Automating the creation of inline javascript and inline stylesheet nonces or hashes			normal	normal	Awaiting Review	feature request	07/03/2024	4
#20140	Ask old password to change user password		dev-feedback	normal	major	Future Release	feature request	07/28/2024	22
#62202	allow plugin versions to be flagged as security updates		close	normal	normal	Awaiting Review	feature request	10/10/2024	5
#62134	Security Issue in WordPress Core			normal	normal		defect (bug)	10/14/2024	5
#28521	FORCE_SSL constant for really forcing SSL	adamsilverstein		normal	normal	Future Release	enhancement	11/19/2024	26
#56860	Sodium Compat library is improperly loaded			normal	normal	Awaiting Review	defect (bug)	11/19/2024
#62384	.htaccess lacks			normal	normal	Awaiting Review	enhancement	12/09/2024	1
#62693	check if chmod is available to prevent Fatal Errors			normal	normal	Awaiting Review	defect (bug)	12/14/2024	2
#36177	default htaccess should include security measures			normal	normal	Awaiting Review	enhancement	12/24/2024	23
#62949	HttpOnly flag for the post password cookie		dev-feedback	normal	normal	Awaiting Review	enhancement	02/12/2025
#61706	Support for storing and getting encrypted options		dev-feedback	normal	normal	Awaiting Review	enhancement	02/18/2025	1
#53973	WordPress <= 5.8 - Authenticated Persistent XSS (User role name)		has-patch	normal	normal	Future Release	defect (bug)	03/12/2025	13
#63259	Replace zxcvbn with zxcvbn-ts			normal	normal	Awaiting Review	defect (bug)	04/11/2025	4
#63329	Use check_ajax_referer() instead of check_admin_referer() for AJAX requests in media form handling.		has-patch	normal	normal	Awaiting Review	enhancement	04/22/2025	1
#37757	Add `allowed_classes` to `maybe_unserialize` When WordPress is running on PHP 7+		dev-feedback	normal	normal	Awaiting Review	enhancement	04/24/2025	14
#63457	WordPress 6.8 will fail creating bcrypt when entropy sources are not available		reporter-feedback	normal	normal	Awaiting Review	defect (bug)	05/18/2025	2
#30465	Dashboard alert if a plugin/theme was removed from WordPress repo		dev-feedback	normal	normal	Future Release	feature request	06/11/2025	63
#38474	wp_signups.activation_key stores activation keys in plain text	SergeyBiryukov	dev-feedback	normal	normal	Future Release	enhancement	06/20/2025	21
#63727	A new function to sanitize an array		dev-feedback	normal	normal	Awaiting Review	enhancement	07/28/2025	11
#56391	safecss_filter_attr(): support rgba background-color		has-patch	normal	normal		defect (bug)	07/31/2025	11
#58679	meta key field in usermeta table should NOT use accent insensitive collations			normal	major	Awaiting Review	defect (bug)	08/19/2025	1
#56141	Enhance installer security		dev-feedback	high	major	Future Release	enhancement	08/30/2025	15
#63940	Prevent POST flood cache bypass attacks			normal	normal	Awaiting Review	defect (bug)	09/06/2025
#64063	Remove bundled 1024-bit certificates from bundled root certificates		early	normal	major	7.0	task (blessed)	10/17/2025	1
#43936	Settings: Warn when open registration and new user default is privileged	audrasjb*	dev-feedback	normal	normal	7.0	feature request	10/21/2025	73
#32067	Remove inline javascript from WP-Core to allow CSP protection			normal	normal	Future Release	feature request	10/21/2025	21
#51159	Let's expand our context specific escaping methods for wp_json_encode().			normal	normal	Awaiting Review	enhancement	11/04/2025	4
#43215	Allow wp_kses to pass allowed CSS properties			normal	normal	Awaiting Review	feature request	11/08/2025	4
#64245	Update bundled root certificates for 7.0			normal	normal	7.0	task (blessed)	11/13/2025
Shortcodes (12 matches)
Ticket	Summary	Owner	Workflow	Priority	Severity	Milestone	Type	Modified	Comments
#35022	WP allows Unicode 0x00a0 spaces in editor but shortcode parser can't handle them		has-patch	normal	normal	Future Release	defect (bug)	02/06/2017	21
#41086	Conditional loading of CSS files from (for example) shortcodes			normal	normal	Awaiting Review	feature request	06/16/2017	1
#25435	Introduce alternative to do_shortcode( '[shortcode]' )	rmccue	has-patch	normal	normal	Future Release	feature request	09/27/2017	31
#31093	Make $tag argument optional for has_shortcode()		dev-feedback	normal	normal	Future Release	enhancement	10/31/2017	6
#43456	`wp_html_split` <script>			normal	normal	Awaiting Review	defect (bug)	03/02/2018
#35216	Return empty string from wp.shortcode.replace() callback is ignored		has-patch	normal	normal	Awaiting Review	defect (bug)	06/27/2018	6
#45377	Video Shortcode Ajax Issue			normal	minor	Future Release	defect (bug)	12/06/2018	5
#43686	Shortcodes containing asterisks may create invalid regex breaking the editor		dev-feedback	normal	normal	Future Release	defect (bug)	01/16/2019	3
#46412	Make shortcode attributes case-insensitive? shortcode_parse_atts			normal	normal	Awaiting Review	enhancement	03/04/2019	1
#38713	Shortcodes and utf-8 no-break whitespace (\xc2\xa0)			normal	normal	Awaiting Review	defect (bug)	03/25/2019	1
#6984	wpautop() formats the the contents of shortcodes			normal	normal	Future Release	defect (bug)	04/01/2019	18
#37238	Right-aligned captions with embedded iframes get removed in Visual mode			normal	normal		defect (bug)	04/19/2019	1

← 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 →

Note: See TracReports for help on using and creating reports.

Trac UI Preferences

Download in other formats: