WordPress.org
Get WordPress

Make WordPress Core

{1} All Tickets (7990 matches)

Create a new ticket
  • All active tickets
  • Sort by component, type, summary
  • Accepted tickets have an '*' appended to their owner's name

Results (6401 - 6500 of 7990)

55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75

Script Loader (16 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#61755 Use WPINC constant in script-loader.php close normal normal Awaiting Review defect (bug) 08/14/2025 1
#64592 WP 6.9.1still have issue with load block styles on demand in classic themes reporter-feedback normal normal Awaiting Review defect (bug) 02/04/2026 3
#36448 When concatenating scripts in script-loader dependencies may not be honoured. normal normal defect (bug) 08/12/2025 2
#36449 When concatenating styles in script-loader dependencies may not be honoured. normal normal defect (bug) 08/12/2025 2
#54956 [5.9] wp_block_type args - "style" and "script" are always loaded on Frontend needs-unit-tests normal normal Awaiting Review defect (bug) 07/19/2022 8
#55695 error on script_loader.php reporter-feedback normal normal Awaiting Review defect (bug) 05/07/2022 1
#39991 jQuery UI Datepicker Localization Error with PHP date 'S' has-patch normal normal Future Release defect (bug) 10/25/2018 6
#54777 passing empty object to wp_localize_script will convert it to empty array instead of empty object normal normal Awaiting Review defect (bug) 01/10/2022 1
#47322 scenario based-bug in the file load-style.php normal normal Awaiting Review defect (bug) 09/01/2025 2
#63043 script-loader 'colors' src true invalid argument has-patch normal normal Awaiting Review defect (bug) 03/03/2025 2
#62265 wp-admin honors style-sheet <=> 'SCRIPT_DEBUG' is true. normal normal Awaiting Review defect (bug) 10/21/2024 1
#41990 wp_add_inline_script() does not print if the handler has already processed dev-feedback normal normal Future Release defect (bug) 04/12/2023 2
#55030 wp_enqueue_script( 'jquery-ui-autocomplete' ) - is enqueueing a bunch of extra scripts I don't need normal normal Awaiting Review defect (bug) 02/18/2022 2
#58075 wp_enqueue_scripts action not firing at the right time with block themes normal major Awaiting Review defect (bug) 05/26/2023 3
#59539 wp_register_style and wp_register_script adds ver incorrectly normal major Awaiting Review defect (bug) 10/04/2023
#63693 wp_should_load_block_assets_on_demand doing it wrong too early normal normal Awaiting Review defect (bug) 08/21/2025 1

Security (51 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#64245 Update bundled root certificates for 7.0 has-patch normal normal 7.0 task (blessed) 02/17/2026 1
#55514 2FA by default for WordPress normal normal Awaiting Review feature request 03/06/2023 3
#43215 Allow wp_kses to pass allowed CSS properties normal normal Awaiting Review feature request 11/19/2025 4
#20140 Ask old password to change user password dev-feedback normal major Future Release feature request 07/28/2024 22
#53902 Automating the creation of inline javascript and inline stylesheet nonces or hashes normal normal Awaiting Review feature request 07/03/2024 4
#30465 Dashboard alert if a plugin/theme was removed from WordPress repo dev-feedback normal normal Future Release feature request 06/11/2025 63
#32067 Remove inline javascript from WP-Core to allow CSP protection normal normal Future Release feature request 10/21/2025 21
#43936 Settings: Warn when open registration and new user default is privileged audrasjb* dev-feedback normal normal 7.0 feature request 02/13/2026 77
#62202 allow plugin versions to be flagged as security updates close normal normal Awaiting Review feature request 10/10/2024 5
#62384 .htaccess lacks normal normal Awaiting Review enhancement 12/09/2024 1
#63727 A new function to sanitize an array dev-feedback normal normal Awaiting Review enhancement 07/28/2025 11
#37757 Add `allowed_classes` to `maybe_unserialize` When WordPress is running on PHP 7+ dev-feedback normal normal Awaiting Review enhancement 04/24/2025 14
#23165 Admin validation errors on form nonce element IDs (_wpnonce) has-patch normal normal Awaiting Review enhancement 02/08/2021 17
#58636 Automatic Sanitization of Nonces in wp_verify_nonce normal normal Awaiting Review enhancement 06/26/2023
#40237 Educate users about modern password best-practices normal normal Awaiting Review enhancement 06/06/2022 9
#56141 Enhance installer security dev-feedback high major Future Release enhancement 08/30/2025 15
#51611 Escape echoing Core functions normal normal Awaiting Review enhancement 10/24/2020 1
#64481 Explore Sec-Fetch Headers as a Core-Supported CSRF Mitigation Mechanism normal normal Awaiting Review enhancement 01/08/2026 1
#28521 FORCE_SSL constant for really forcing SSL adamsilverstein normal normal Future Release enhancement 11/19/2024 26
#43320 Harden API requests against man-in-the-middle attacks low minor Awaiting Review enhancement 02/18/2018 2
#62949 HttpOnly flag for the post password cookie dev-feedback normal normal Awaiting Review enhancement 02/12/2025
#44058 Include security sniffs in PHPCS ruleset normal normal Future Release enhancement 05/16/2018 3
#51159 Let's expand our context specific escaping methods for wp_json_encode(). normal normal Awaiting Review enhancement 01/15/2026 7
#36087 Migration plan from insecure RNG fallback normal normal Future Release enhancement 09/30/2020 3
#51407 Remove inline event handlers and JavaScript URIs for Strict CSP-compatibility adamsilverstein dev-feedback normal normal Future Release enhancement 12/26/2023 15
#57424 Specific hook for Content Security Policy normal normal Awaiting Review enhancement 01/05/2023
#61706 Support for storing and getting encrypted options dev-feedback normal normal Awaiting Review enhancement 02/18/2025 1
#37000 Support for the SameSite cookie attribute dev-feedback normal normal Future Release enhancement 06/06/2024 45
#51438 Use CSP directive upgrade-insecure-requests when using HTTPS needs-unit-tests normal normal Future Release enhancement 11/09/2021 4
#60470 Use `filter_input` instead of superglobals where possible normal normal Awaiting Review enhancement 02/09/2024 3
#63329 Use check_ajax_referer() instead of check_admin_referer() for AJAX requests in media form handling. has-patch normal normal Awaiting Review enhancement 04/22/2025 1
#36177 default htaccess should include security measures normal normal Awaiting Review enhancement 12/24/2024 23
#38474 wp_signups.activation_key stores activation keys in plain text SergeyBiryukov dev-feedback normal normal Future Release enhancement 06/20/2025 21
#52333 Lack of the &colon; entity on the list of allowed entity names in kses.php has-patch normal minor Awaiting Review defect (bug) 01/20/2021
#41391 Links to media in password protected pages normal normal Awaiting Review defect (bug) 07/24/2017 1
#37264 Please do not chmod 666 the wp-config.php file on installation. has-patch normal normal Awaiting Review defect (bug) 03/22/2019 9
#53869 Post type / Taxonomy Label Hardening: Prevent Raw HTML tags in output / Media Library eval of HTML entities in label has-patch normal normal Awaiting Review defect (bug) 08/04/2021 3
#63940 Prevent POST flood cache bypass attacks normal normal Awaiting Review defect (bug) 09/06/2025
#53994 REST API requests with session cookies but an invalid/missing nonce are considered authenticated for most of the request normal normal Awaiting Review defect (bug) 08/24/2021
#63259 Replace zxcvbn with zxcvbn-ts normal normal Awaiting Review defect (bug) 04/11/2025 4
#62134 Security Issue in WordPress Core normal normal defect (bug) 10/14/2024 5
#56860 Sodium Compat library is improperly loaded normal normal Awaiting Review defect (bug) 11/19/2024
#60864 URL sanitizing strips valid characters instead of encoding, documented use is invalid has-patch normal normal Awaiting Review defect (bug) 01/04/2026 5
#63457 WordPress 6.8 will fail creating bcrypt when entropy sources are not available reporter-feedback normal normal Awaiting Review defect (bug) 05/18/2025 2
#53973 WordPress <= 5.8 - Authenticated Persistent XSS (User role name) has-patch normal normal Future Release defect (bug) 03/12/2025 13
#62693 check if chmod is available to prevent Fatal Errors normal normal Awaiting Review defect (bug) 12/14/2024 2
#58679 meta key field in usermeta table should NOT use accent insensitive collations normal major Awaiting Review defect (bug) 08/19/2025 1
#56391 safecss_filter_attr(): support rgba background-color has-patch normal normal defect (bug) 02/13/2026 13
#57447 wp_ajax_inline_save function does not check if post has "public" or "show_ui" enabled normal normal Awaiting Review defect (bug) 01/11/2023
#31686 wp_authenticate_username_password() should check for a WP_Error object reporter-feedback normal normal Awaiting Review defect (bug) 08/06/2019 6
#56521 wp_kses wp_kses_hair fails to allow a valueless attribute when is follwed by / has-patch normal major Awaiting Review defect (bug) 09/06/2022 1

Shortcodes (33 matches)

Ticket Summary Owner Workflow Priority Severity Milestone Type Modified Comments
#41086 Conditional loading of CSS files from (for example) shortcodes normal normal Awaiting Review feature request 06/16/2017 1
#62752 Enhance Audio and Video Shortcodes with Custom Features (Tracklist, Images, Artists, Track Numbers, and Media Handling) dev-feedback normal normal Awaiting Review feature request 01/02/2025 2
#47984 Filter pre_do_shortcode has-patch normal normal Awaiting Review feature request 09/05/2019
#25435 Introduce alternative to do_shortcode( '[shortcode]' ) rmccue has-patch normal normal Future Release feature request 09/27/2017 31
#33593 Make shortcodes case insensitive dev-feedback normal normal feature request 06/04/2019 2
#47616 Enhancement: doing_shortcode() function similar to doing_filter() audrasjb* needs-unit-tests normal normal Future Release enhancement 11/09/2021 17
#54289 Improve get_shortcode_regex performance has-patch normal normal Future Release enhancement 10/14/2025 9
#31093 Make $tag argument optional for has_shortcode() dev-feedback normal normal Future Release enhancement 10/31/2017 6
#46412 Make shortcode attributes case-insensitive? shortcode_parse_atts normal normal Awaiting Review enhancement 03/04/2019 1
#50683 Parse content for shortcodes instead of using regex has-patch normal normal Future Release enhancement 06/11/2025 40
#60200 Search functionality does not search shortcodes normal normal Awaiting Review enhancement 01/06/2024
#29661 Should Shortcode Attributes Allow HTML Special Characters? normal normal enhancement 06/04/2019 4
#62454 [ wp-includes/shortcodes.php - do_shortcode() ] - fallback in case content is not a string dev-feedback normal trivial Awaiting Review enhancement 11/19/2024 4
#36958 extending has_shortcode to allow searching in custom fields normal normal enhancement 06/04/2019 1
#35179 playlist shortcode needs an option to not loop normal normal enhancement 06/04/2019
#25644 strip_shortcodes always removes text between shortcode tags, should be optional dev-feedback normal normal enhancement 07/21/2025 6
#58174 A shortcode block that evaluates to nothing, renders as a space in the HTML normal normal Awaiting Review defect (bug) 10/26/2023 3
#60887 After upgrade to WordPress 6.4.3, do_shortcode no longer works in page templates normal critical Awaiting Review defect (bug) 04/02/2024
#58469 Changeset 55832 broke shortcodes saved in block attributes and rendered serverside normal normal Awaiting Review defect (bug) 06/07/2023 1
#33134 Complex Nested Shortcodes Inside of Attributes Are Not Processed Left-to-Right normal normal defect (bug) 06/04/2019 7
#49877 Content enclosed by (content enclosing) shortcode gets stripped from excerpt dev-feedback normal normal Awaiting Review defect (bug) 07/24/2020 5
#47863 Fix odd, unexpected output from shortcode_parse_attts SergeyBiryukov dev-feedback normal normal Future Release defect (bug) 07/16/2025 33
#51377 Front End elements break after too many shortcodes reporter-feedback normal normal Awaiting Review defect (bug) 09/24/2020 2
#43725 Multiple instances of opening / closing shortcode only works when closing tag is provided normal normal Future Release defect (bug) 07/16/2020 1
#37183 Nested shortcodes in new-style [caption] dev-feedback normal normal defect (bug) 05/08/2021 3
#57790 Parsing of Shortcode Attributes: bug locating a final attribute dev-feedback normal normal Awaiting Review defect (bug) 03/18/2025 2
#34814 Presence of "Less than sign" < adds additional closing shortcode tag. normal normal defect (bug) 06/04/2019 1
#35216 Return empty string from wp.shortcode.replace() callback is ignored has-patch normal normal Awaiting Review defect (bug) 06/27/2018 6
#37238 Right-aligned captions with embedded iframes get removed in Visual mode normal normal defect (bug) 04/19/2019 1
#35591 Shortcode Attributes Parsing Issue reporter-feedback normal normal defect (bug) 06/04/2019 13
#58366 Shortcode Support Regained but Content Filters are messing with Shortcode HTML needs-unit-tests normal normal Future Release defect (bug) 05/22/2025 95
#61007 Shortcode aren't paste inline in paragraphs normal major Awaiting Review defect (bug) 08/24/2024 7
#59509 Shortcode attributes named 0 are ignored needs-unit-tests normal normal Awaiting Review defect (bug) 10/25/2024 4
55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75
Note: See TracReports for help on using and creating reports.