WordPress.org
Get WordPress

Make WordPress Core

{1} All Tickets (7993 matches)

Create a new ticket
  • All active tickets
  • Sort by component, type, summary
  • Accepted tickets have an '*' appended to their owner's name

Results (6401 - 6500 of 7993)

55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75

Script Loader (14 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#37162 wp_style_add_data and wp_script_add_data should accept SRI information normal normal Awaiting Review enhancement 11/14/2018 2
#36791 Set load order when enqueuing scripts and styles has-patch normal normal enhancement 06/04/2019 4
#36779 Move /wp-admin/load-scripts.php and /wp-admin/load-styles.php to /wp-includes close normal normal defect (bug) 08/12/2025 1
#36449 When concatenating styles in script-loader dependencies may not be honoured. normal normal defect (bug) 08/12/2025 2
#36448 When concatenating scripts in script-loader dependencies may not be honoured. normal normal defect (bug) 08/12/2025 2
#35963 Only remove item from WP_Dependencies::to_do if it was successfully processed needs-unit-tests normal normal defect (bug) 06/04/2019 2
#26113 Create a WordPress-specific, dependable reference to the WP-bundled jQuery object. normal normal defect (bug) 06/04/2019 2
#25666 Pass perpetrating $handle to enqueue_script's _doing_it_wrong() call normal normal enhancement 06/04/2019 4
#24713 Compression in load_styles.php does not always work, causing inability to use the admin normal normal defect (bug) 06/04/2019 1
#21520 Prevent recursive script dependencies in wp_enqueue_script normal normal defect (bug) 06/04/2019 11
#20558 allow wp_localize_script data to be added to existing objects dev-feedback normal normal enhancement 06/04/2019 6
#17916 Enqueued styles are only printed on login_footer in wp-login.php dev-feedback normal normal Future Release defect (bug) 08/10/2018 38
#15833 Script concatenation fails to take external dependencies into account. normal normal Future Release defect (bug) 05/21/2019
#13078 Make wp_register_style and wp_enqueue_style consistent has-patch normal normal defect (bug) 06/04/2019 3

Security (52 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#64481 Explore Sec-Fetch Headers as a Core-Supported CSRF Mitigation Mechanism normal normal Awaiting Review enhancement 01/08/2026 1
#64245 Update bundled root certificates for 7.0 normal normal 7.0 task (blessed) 11/13/2025
#64063 Remove bundled 1024-bit certificates from bundled root certificates johnbillion* has-patch normal major 7.0 task (blessed) 02/12/2026 7
#63940 Prevent POST flood cache bypass attacks normal normal Awaiting Review defect (bug) 09/06/2025
#63727 A new function to sanitize an array dev-feedback normal normal Awaiting Review enhancement 07/28/2025 11
#63457 WordPress 6.8 will fail creating bcrypt when entropy sources are not available reporter-feedback normal normal Awaiting Review defect (bug) 05/18/2025 2
#63329 Use check_ajax_referer() instead of check_admin_referer() for AJAX requests in media form handling. has-patch normal normal Awaiting Review enhancement 04/22/2025 1
#63259 Replace zxcvbn with zxcvbn-ts normal normal Awaiting Review defect (bug) 04/11/2025 4
#62949 HttpOnly flag for the post password cookie dev-feedback normal normal Awaiting Review enhancement 02/12/2025
#62693 check if chmod is available to prevent Fatal Errors normal normal Awaiting Review defect (bug) 12/14/2024 2
#62384 .htaccess lacks normal normal Awaiting Review enhancement 12/09/2024 1
#62202 allow plugin versions to be flagged as security updates close normal normal Awaiting Review feature request 10/10/2024 5
#62134 Security Issue in WordPress Core normal normal defect (bug) 10/14/2024 5
#61706 Support for storing and getting encrypted options dev-feedback normal normal Awaiting Review enhancement 02/18/2025 1
#60864 URL sanitizing strips valid characters instead of encoding, documented use is invalid has-patch normal normal Awaiting Review defect (bug) 01/04/2026 5
#60470 Use `filter_input` instead of superglobals where possible normal normal Awaiting Review enhancement 02/09/2024 3
#58679 meta key field in usermeta table should NOT use accent insensitive collations normal major Awaiting Review defect (bug) 08/19/2025 1
#58636 Automatic Sanitization of Nonces in wp_verify_nonce normal normal Awaiting Review enhancement 06/26/2023
#57447 wp_ajax_inline_save function does not check if post has "public" or "show_ui" enabled normal normal Awaiting Review defect (bug) 01/11/2023
#57424 Specific hook for Content Security Policy normal normal Awaiting Review enhancement 01/05/2023
#56860 Sodium Compat library is improperly loaded normal normal Awaiting Review defect (bug) 11/19/2024
#56521 wp_kses wp_kses_hair fails to allow a valueless attribute when is follwed by / has-patch normal major Awaiting Review defect (bug) 09/06/2022 1
#56391 safecss_filter_attr(): support rgba background-color has-patch normal normal defect (bug) 02/13/2026 13
#56141 Enhance installer security dev-feedback high major Future Release enhancement 08/30/2025 15
#55514 2FA by default for WordPress normal normal Awaiting Review feature request 03/06/2023 3
#53994 REST API requests with session cookies but an invalid/missing nonce are considered authenticated for most of the request normal normal Awaiting Review defect (bug) 08/24/2021
#53973 WordPress <= 5.8 - Authenticated Persistent XSS (User role name) has-patch normal normal Future Release defect (bug) 03/12/2025 13
#53902 Automating the creation of inline javascript and inline stylesheet nonces or hashes normal normal Awaiting Review feature request 07/03/2024 4
#53869 Post type / Taxonomy Label Hardening: Prevent Raw HTML tags in output / Media Library eval of HTML entities in label has-patch normal normal Awaiting Review defect (bug) 08/04/2021 3
#52333 Lack of the &colon; entity on the list of allowed entity names in kses.php has-patch normal minor Awaiting Review defect (bug) 01/20/2021
#51611 Escape echoing Core functions normal normal Awaiting Review enhancement 10/24/2020 1
#51438 Use CSP directive upgrade-insecure-requests when using HTTPS needs-unit-tests normal normal Future Release enhancement 11/09/2021 4
#51407 Remove inline event handlers and JavaScript URIs for Strict CSP-compatibility adamsilverstein dev-feedback normal normal Future Release enhancement 12/26/2023 15
#51159 Let's expand our context specific escaping methods for wp_json_encode(). normal normal Awaiting Review enhancement 01/15/2026 7
#44058 Include security sniffs in PHPCS ruleset normal normal Future Release enhancement 05/16/2018 3
#43936 Settings: Warn when open registration and new user default is privileged audrasjb* dev-feedback normal normal 7.0 feature request 02/13/2026 77
#43320 Harden API requests against man-in-the-middle attacks low minor Awaiting Review enhancement 02/18/2018 2
#43215 Allow wp_kses to pass allowed CSS properties normal normal Awaiting Review feature request 11/19/2025 4
#41391 Links to media in password protected pages normal normal Awaiting Review defect (bug) 07/24/2017 1
#40237 Educate users about modern password best-practices normal normal Awaiting Review enhancement 06/06/2022 9
#38474 wp_signups.activation_key stores activation keys in plain text SergeyBiryukov dev-feedback normal normal Future Release enhancement 06/20/2025 21
#37757 Add `allowed_classes` to `maybe_unserialize` When WordPress is running on PHP 7+ dev-feedback normal normal Awaiting Review enhancement 04/24/2025 14
#37264 Please do not chmod 666 the wp-config.php file on installation. has-patch normal normal Awaiting Review defect (bug) 03/22/2019 9
#37000 Support for the SameSite cookie attribute dev-feedback normal normal Future Release enhancement 06/06/2024 45
#36177 default htaccess should include security measures normal normal Awaiting Review enhancement 12/24/2024 23
#36087 Migration plan from insecure RNG fallback normal normal Future Release enhancement 09/30/2020 3
#32067 Remove inline javascript from WP-Core to allow CSP protection normal normal Future Release feature request 10/21/2025 21
#31686 wp_authenticate_username_password() should check for a WP_Error object reporter-feedback normal normal Awaiting Review defect (bug) 08/06/2019 6
#30465 Dashboard alert if a plugin/theme was removed from WordPress repo dev-feedback normal normal Future Release feature request 06/11/2025 63
#28521 FORCE_SSL constant for really forcing SSL adamsilverstein normal normal Future Release enhancement 11/19/2024 26
#23165 Admin validation errors on form nonce element IDs (_wpnonce) has-patch normal normal Awaiting Review enhancement 02/08/2021 17
#20140 Ask old password to change user password dev-feedback normal major Future Release feature request 07/28/2024 22

Shortcodes (34 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#62752 Enhance Audio and Video Shortcodes with Custom Features (Tracklist, Images, Artists, Track Numbers, and Media Handling) dev-feedback normal normal Awaiting Review feature request 01/02/2025 2
#62454 [ wp-includes/shortcodes.php - do_shortcode() ] - fallback in case content is not a string dev-feedback normal trivial Awaiting Review enhancement 11/19/2024 4
#61007 Shortcode aren't paste inline in paragraphs normal major Awaiting Review defect (bug) 08/24/2024 7
#60887 After upgrade to WordPress 6.4.3, do_shortcode no longer works in page templates normal critical Awaiting Review defect (bug) 04/02/2024
#60200 Search functionality does not search shortcodes normal normal Awaiting Review enhancement 01/06/2024
#59509 Shortcode attributes named 0 are ignored needs-unit-tests normal normal Awaiting Review defect (bug) 10/25/2024 4
#58469 Changeset 55832 broke shortcodes saved in block attributes and rendered serverside normal normal Awaiting Review defect (bug) 06/07/2023 1
#58397 Shortcodes in patterns are not rendered in templates normal normal Awaiting Review defect (bug) 05/24/2023
#58386 Shortcode generated by a block element is not executed in templates normal normal Awaiting Review defect (bug) 06/09/2023 4
#58366 Shortcode Support Regained but Content Filters are messing with Shortcode HTML needs-unit-tests normal normal Future Release defect (bug) 05/22/2025 95
#58174 A shortcode block that evaluates to nothing, renders as a space in the HTML normal normal Awaiting Review defect (bug) 10/26/2023 3
#57790 Parsing of Shortcode Attributes: bug locating a final attribute dev-feedback normal normal Awaiting Review defect (bug) 03/18/2025 2
#57267 wp_enqueue_style is not working under shortcode reporter-feedback normal normal Awaiting Review defect (bug) 12/15/2022 1
#55406 Shortcodes don't work inside srcset attribute normal normal Awaiting Review defect (bug) 04/08/2022
#54289 Improve get_shortcode_regex performance has-patch normal normal Future Release enhancement 10/14/2025 9
#52567 Shortcodes in separate <p> tags appear on same line in browser normal normal Awaiting Review defect (bug) 05/25/2023 1
#51377 Front End elements break after too many shortcodes reporter-feedback normal normal Awaiting Review defect (bug) 09/24/2020 2
#50683 Parse content for shortcodes instead of using regex has-patch normal normal Future Release enhancement 06/11/2025 40
#49955 Shortcode escaping not correctly handled when followed by enclosing shortcodes normal normal Awaiting Review defect (bug) 07/16/2020 2
#49877 Content enclosed by (content enclosing) shortcode gets stripped from excerpt dev-feedback normal normal Awaiting Review defect (bug) 07/24/2020 5
#47984 Filter pre_do_shortcode has-patch normal normal Awaiting Review feature request 09/05/2019
#47863 Fix odd, unexpected output from shortcode_parse_attts SergeyBiryukov dev-feedback normal normal Future Release defect (bug) 07/16/2025 33
#47616 Enhancement: doing_shortcode() function similar to doing_filter() audrasjb* needs-unit-tests normal normal Future Release enhancement 11/09/2021 17
#46412 Make shortcode attributes case-insensitive? shortcode_parse_atts normal normal Awaiting Review enhancement 03/04/2019 1
#45377 Video Shortcode Ajax Issue normal minor Future Release defect (bug) 12/06/2018 5
#44571 force_balance_tags breaks JavaScript normal normal Awaiting Review defect (bug) 09/22/2024 2
#43725 Multiple instances of opening / closing shortcode only works when closing tag is provided normal normal Future Release defect (bug) 07/16/2020 1
#43686 Shortcodes containing asterisks may create invalid regex breaking the editor dev-feedback normal normal Future Release defect (bug) 01/16/2019 3
#43457 `wp_html_split` valid HTML attributes issues has-patch normal normal Awaiting Review defect (bug) 05/28/2024 5
#43456 `wp_html_split` <script> normal normal Awaiting Review defect (bug) 03/02/2018
#42718 Video shortcode needs muted attribute for Autoplay to work with Safari 11.0.1+ has-patch normal normal Awaiting Review defect (bug) 07/10/2020 8
#41086 Conditional loading of CSS files from (for example) shortcodes normal normal Awaiting Review feature request 06/16/2017 1
#40958 force_balance_tags breaks Ninjaforms and probably other plugins that output html within js. normal normal Awaiting Review defect (bug) 02/21/2025 6
#38713 Shortcodes and utf-8 no-break whitespace (\xc2\xa0) normal normal Awaiting Review defect (bug) 03/25/2019 1
55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75
Note: See TracReports for help on using and creating reports.