#38044
|
Make seems_utf8() RFC 3629 compliant.
|
|
has-patch
|
normal
|
normal
|
Future Release
|
defect (bug)
|
09/30/2024
|
#56656
|
Move accent removal from `sanitize_title_with_dashes()` to `remove_accents()`
|
|
|
normal
|
major
|
Awaiting Review
|
defect (bug)
|
09/26/2022
|
#40191
|
Multiline post content with `<` as first character becomes malformed
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
03/02/2018
|
#34722
|
Open P Tag in shortcode related to h tag
|
|
dev-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
07/20/2017
|
#50197
|
PHP 7.4 Compatibility with WP 5.4.1 – problem with seems_utf8()
|
|
close
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
07/29/2022
|
#53160
|
PHP 7.4 map_deep compatibility issue
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
05/05/2021
|
#61268
|
PHP Deprecated: ltrim() in formatting esc_url.
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
07/01/2024
|
#36712
|
Paragraph tags removed from div elements if script tag is present
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#29956
|
Paragraphs within list items disappear in the editor when switching from text to visual and back
|
|
needs-unit-tests
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#33629
|
Post excerpts have become WAY too long after updating to WP 4.3, please fix.
|
|
has-patch
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#58406
|
Post/Page Content Renders Empty
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
09/26/2023
|
#55949
|
Prevent trailingslashit from removing backslash for valid filenames on linux systems
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
06/08/2022
|
#39190
|
RSS feed not valid: U+001A or 0x1a
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
01/04/2019
|
#41711
|
Remove hAtom from core
|
|
dev-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
08/29/2017
|
#58616
|
Replace apostrophe with hyphen for slugs
|
|
|
normal
|
major
|
Awaiting Review
|
defect (bug)
|
06/25/2023
|
#37077
|
Replacing one variable handler for another to ensure proper conditional check occurs 100%.
|
|
has-patch
|
normal
|
trivial
|
|
defect (bug)
|
06/04/2019
|
#57021
|
Sanitize should accept broader types
|
|
close
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
05/08/2024
|
#36775
|
Shortcode stripping on frontend
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#52517
|
Shortcodes inside AMP tags do not work
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
06/02/2023
|
#51353
|
Smart Quote Bug
|
|
reporter-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
09/18/2020
|
#55563
|
The function get_allowed_mime_types should check wp_get_current_user
|
|
dev-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
04/12/2022
|
#26674
|
The get_tag_regex() function is a too greedy when searching for a closing tag.
|
|
has-patch
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#46846
|
Tight comparisons and use of Yoda conditions are not consistent
|
|
dev-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
04/09/2019
|
#6297
|
Unbalanced tags across more and nextpage tags
|
|
|
normal
|
normal
|
Future Release
|
defect (bug)
|
03/15/2019
|
#25785
|
Unexpected Paragraph Formatting Within a Div Container
|
|
needs-unit-tests
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#31992
|
Unicode Email Addresses
|
|
has-patch
|
normal
|
normal
|
|
defect (bug)
|
09/23/2024
|
#30495
|
Unicode character U+000B is not removed by sanitize_file_name
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
08/27/2018
|
#42058
|
Unit test for _autop_newline_preservation_helper()
|
|
dev-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
12/11/2017
|
#46673
|
Update esc_url function (default https).
|
|
|
normal
|
normal
|
|
defect (bug)
|
12/06/2021
|
#24846
|
Usage of a shortcode disables wpautop filter
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#27270
|
Validation for leading/trailing periods, or consecutive periods in email addresses is only done on the domain section
|
|
has-patch
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#32729
|
WP sanitize + (plus) and other mathematic symbols as nothing instead of dash separator
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#59691
|
WordPress doesn't sanitize character ʼ (unicode U+02BC) when converting post title to slug
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
10/20/2023
|
#32867
|
Wordpress replaces HTML entities for angle brackets in titles, breaking HTML validation
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#39188
|
Wrapping paragraph tags around 'Read More' link stripped out of custom post type
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
03/15/2019
|
#50863
|
[playlist] + text = </p> error
|
|
needs-unit-tests
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
08/06/2020
|
#53023
|
_wp_json_convert_string type mismatch: returns string on success; false on failure
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
10/09/2024
|
#55821
|
`is_email()` does not follow PHP FILTER_VALIDATE_EMAIL rules, when an email has double period (..)
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
06/17/2023
|
#55452
|
`safecss_filter_attr` removes background-images with URL parameters
|
|
|
normal
|
normal
|
Future Release
|
defect (bug)
|
04/20/2022
|
#56119
|
`wp_unslash()` and `wp_slash()` do not (un)slash the same data.
|
|
dev-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
07/11/2022
|
#29807
|
add support for picture element and srcset attribute on img in wp_kses
|
|
has-patch
|
normal
|
normal
|
Future Release
|
defect (bug)
|
03/11/2024
|
#36397
|
add_query_arg doesn't work with numbered html entities
|
|
dev-feedback
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#17923
|
add_query_arg() should encode values
|
|
has-patch
|
normal
|
normal
|
|
defect (bug)
|
08/20/2019
|
#58902
|
add_query_arg() should esc_url_raw() REQUEST_URI
|
|
has-patch
|
normal
|
normal
|
Future Release
|
defect (bug)
|
10/04/2024
|
#58666
|
added HTML tags in HTML block
|
|
|
normal
|
major
|
Awaiting Review
|
defect (bug)
|
06/29/2023
|
#53041
|
colors.css is using the old blue.
|
|
dev-feedback
|
normal
|
minor
|
Awaiting Review
|
defect (bug)
|
04/15/2021
|
#51019
|
convert_smilies() fails on large tags
|
|
has-patch
|
normal
|
normal
|
6.7
|
defect (bug)
|
07/29/2024
|
#42182
|
esc_js must escape U+2028 and U+2029
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
10/11/2017
|
#46791
|
esc_url() adding http:// to a relative URL to parent directory '../pathname/'
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
05/23/2019
|
#34407
|
esc_url() cannot handle a relative URL containing a : character (IPv6)
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#23975
|
force_balance_tags in get_the_content breaks non-HTML formats
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#39847
|
force_balance_tags not properly balancing < with <strong> and </strong>
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
09/22/2024
|
#20368
|
htmlspecialchars() returns empty string for non-UTF-8 input in PHP 5.4
|
|
needs-unit-tests
|
normal
|
major
|
|
defect (bug)
|
06/04/2019
|
#56433
|
invalid regex used in preg_replace
|
|
reporter-feedback
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
08/24/2022
|
#24487
|
is_email() does not recognize IDN domains
|
|
has-patch
|
normal
|
minor
|
Future Release
|
defect (bug)
|
04/28/2021
|
#25108
|
is_email() function validates email with domain that just has 1 character after dot
|
|
has-patch
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#60391
|
links_add_base_url will encode all attribut in null passed in
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
01/30/2024
|
#17433
|
localhost is not accepted as email domain
|
|
has-patch
|
normal
|
normal
|
Future Release
|
defect (bug)
|
03/20/2018
|
#40324
|
make_clickable doesn't work if url stands after an even number off spaces
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
03/31/2017
|
#23050
|
make_clickable incorrectly formats anchors with URL's and spaces in them in comments
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#50514
|
make_clickable nested links bug
|
|
needs-unit-tests
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
10/12/2020
|
#23308
|
make_clickable problem with multiple "Punctuation URL character"
|
|
dev-feedback
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#23922
|
make_clickable() breaks when colon in hash
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#45702
|
make_clickable() doesn't handle linked text being a URL with spaces within it
|
|
needs-unit-tests
|
low
|
trivial
|
Future Release
|
defect (bug)
|
04/03/2019
|
#60138
|
make_clickable() processing emails start with www. incorrectly.
|
|
has-patch
|
normal
|
trivial
|
Awaiting Review
|
defect (bug)
|
02/15/2024
|
#47164
|
map_deep in formatting.php do not handle null-byte
|
|
dev-feedback
|
normal
|
critical
|
Future Release
|
defect (bug)
|
02/23/2023
|
#55257
|
map_deep() function incompatibility with incomplete objects in PHP 8.0+
|
|
dev-feedback
|
normal
|
major
|
Future Release
|
defect (bug)
|
08/08/2023
|
#25851
|
post_content lost when inserting Posts with large base64-encoded images
|
|
|
low
|
critical
|
|
defect (bug)
|
06/04/2019
|
#44793
|
remove_accents() doesnt escape all versions of "i"
|
SergeyBiryukov
|
dev-feedback
|
normal
|
normal
|
Future Release
|
defect (bug)
|
09/22/2019
|
#24157
|
safecss_filter_attr doesn't allow rgb() in inline styles
|
|
has-patch
|
normal
|
normal
|
Future Release
|
defect (bug)
|
06/09/2024
|
#53815
|
safecss_filter_attr removes styles with min() max() and minmax()
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
07/28/2021
|
#60979
|
safecss_filter_attr() should support query strings with "&" as used by Gutenberg
|
|
has-patch
|
normal
|
normal
|
6.7
|
defect (bug)
|
10/04/2024
|
#50855
|
sanitize_file_name function not working as expected if there is '%20' in filename
|
audrasjb*
|
dev-feedback
|
normal
|
normal
|
Future Release
|
defect (bug)
|
10/07/2022
|
#33924
|
sanitize_html_class valid characters
|
|
dev-feedback
|
normal
|
normal
|
Future Release
|
defect (bug)
|
09/20/2022
|
#34039
|
shortcode_parse_atts() no longer parses embedded html fragments
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#14050
|
shortcode_unautop() should also remove the <br /> added after shortcodes
|
aaroncampbell
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#55996
|
the get_the_block_template_html call all the same functions as the the_conent filter so they are run twice
|
|
dev-feedback
|
normal
|
normal
|
Future Release
|
defect (bug)
|
08/28/2024
|
#17039
|
the_excerpt() - <!--more--> handling
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#46966
|
urlencode query string parameters
|
|
|
normal
|
major
|
Awaiting Review
|
defect (bug)
|
08/20/2019
|
#54488
|
wp_filter_nohtml_kses does not remove HTML comments
|
audrasjb
|
dev-feedback
|
normal
|
normal
|
Future Release
|
defect (bug)
|
10/12/2023
|
#30597
|
wp_filter_post_kses mangles URLs with colons in them
|
|
needs-unit-tests
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#58377
|
wp_kses filters custom block name with consecutive hyphens
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
05/23/2023
|
#61246
|
wp_kses makes HTML comment HTML uncommented
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
09/03/2024
|
#58921
|
wp_kses_allowed_html doesn't allow to add esi:include
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
06/22/2024
|
#62024
|
wp_kses_post incorrectly escapes "<" attributes values
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
09/10/2024
|
#37698
|
wp_kses_split global variable pollution
|
|
has-patch
|
normal
|
normal
|
Future Release
|
defect (bug)
|
02/09/2021
|
#54138
|
wp_strip_all_tags should remove scripts/styles content recursively
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
09/16/2021
|
#46886
|
wp_targeted_link_rel adds the rel attribute when the link has data-target=""
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
04/13/2019
|
#18549
|
wp_texturize incorrectly curls closing quotes after inline HTML end tags
|
miqrogroove
|
has-patch
|
normal
|
normal
|
|
defect (bug)
|
08/18/2023
|
#60793
|
wp_trigger error has a wrong wp_kses $allowed_html arguement.
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
03/18/2024
|
#37672
|
wpautop adds a closing p-tag without an opening p-tag
|
|
has-patch
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
04/18/2019
|
#40676
|
wpautop adds opening & closing p tags around the opening a tag and around the closing a tag when the link contains certain flow content elements like div, h1, h2...
|
|
needs-unit-tests
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
07/21/2017
|
#40202
|
wpautop bad code
|
|
|
normal
|
normal
|
Future Release
|
defect (bug)
|
05/21/2020
|
#33466
|
wpautop breaks multi-line textarea content
|
miqrogroove
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#2833
|
wpautop breaks style and script tags
|
|
dev-feedback
|
low
|
normal
|
Future Release
|
defect (bug)
|
03/21/2024
|
#33840
|
wpautop damages inline script
|
|
|
normal
|
normal
|
|
defect (bug)
|
06/04/2019
|
#38656
|
wpautop incorrectly handling paragraphs within block elements
|
|
needs-unit-tests
|
normal
|
normal
|
Future Release
|
defect (bug)
|
03/26/2019
|
#49492
|
wpautop inserted p tags inconsistently alter visual space
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
02/22/2020
|
#43394
|
wpautop inserts extraneous line breaks if hard return around commented content
|
|
|
normal
|
normal
|
Awaiting Review
|
defect (bug)
|
06/15/2020
|
#58872
|
wpautop not disabled when blocks are inserted dynamically
|
|
|
normal
|
minor
|
Awaiting Review
|
defect (bug)
|
07/21/2023
|