__group__,ticket,summary,owner,component,_version,priority,severity,milestone,type,_status,workflow,_created,modified,_description,_reporter
Tickets Needing Feedback,36512,Color picker has disappeared from input in custom post type.,,Administration,4.5,normal,normal,,defect (bug),new,reporter-feedback,2016-04-13T14:55:37Z,2022-07-07T17:30:40Z,"In a custom plugin I've created some metaboxes with color picker fields.
Here how I call the color picker style :
{{{
add_action( 'admin_enqueue_scripts', 'le_chiffre_add_color_picker' );
function le_chiffre_add_color_picker( $hook ) {
// $hook to apply a check for admin page.
wp_enqueue_style( 'wp-color-picker' );
wp_enqueue_script( 'custom-script-handle', plugins_url( 'custom-script.js', __FILE__ ), array( 'wp-color-picker' ), false, true );
}
}}}
the HTML input (created dynamically):
{{{
}}}
and the js for my input fields, loading the color picker:
{{{
(function( $ ) {
// Add Color Picker to all inputs that have 'color-field' class
$(function() {
$('.color-field').each(function(){
$(this).wpColorPicker();
});
});
})( jQuery );
}}}
With WordPress 4.4.2 everything worked like a charm (I even did a reverse from 4.5 to 4.4.2 to be sure of it) and now with the 4.5 version, the color picker doesn't show up on my fields...
I didn't found anybody having the same issue.
Have a nice day
David THOMAS
",anou
Unpatched Bugs,59329,"Firefox gets ""ReferenceError: Â is not defined"" in unminified moxie.js",,Upload,,normal,minor,,defect (bug),new,close,2023-09-12T13:04:50Z,2023-11-04T09:36:22Z,"In unminified moxie.js, there exists some weird Unicode characters on line 7391, between the BinaryReader constructor fn and the call to Basic.extend(). In a hex editor, you can see the character bytes are ""C2A0"", which is a random Korean Hangul character in Unicode.
In Firefox (as of the latest 117), when using Divi, this causes an exception when loading unminified moxie.js. Firefox's Js loader interprets the first byte alone as Â, and fails while loading moxie.js.
I can replicate this in FF+Divi, but the problem does not appear in Chrome, Safari, or in FF when using other builders like Classic/Gutenberg/Elementor/Beaver. Minification strips out the problem bytes.
This link, https://stackoverflow.com/a/1462039/1201409, suggests the error is leftover from an earlier era of encoding a nonbreaking space before UTF-8 replaced other encodings.
Regardless of how the bytes got in there (and whether FF/Divi have bugs), they shouldn't be there, and luckily, the fix is trivial: delete them.",kinggmobb
Tickets with Patches,28326,List Tables don't update properly after Quick Edit,,Quick/Bulk Edit,,normal,normal,,defect (bug),new,dev-feedback,2014-05-21T15:06:40Z,2023-02-17T09:19:06Z,"Scenario: I have 2 sticky posts. I go to the Post list table and click the ""Sticky (2)"" link.
I see my 2 stickies.
I Quick Edit one of them and make it no sticky.
What do I see? (drumroll):
Both posts + a link that says ""Sticky (2)""
",wonderboymusic
Tickets Needing Feedback,29458,No longer able to catch click event of dashicons edit/delete,,Media,3.9,normal,normal,,defect (bug),new,reporter-feedback,2014-09-01T19:55:53Z,2019-06-04T20:08:56Z,"In WP4 RC it's no longer possible to catch the dashicons edit button click through the tinyMCE onclick event.
For example:
{{{
tinymce.activeEditor.on('click', function() {alert('clicked')} )
}}}
Never alerts. Is there a reason something's doing preventdefault or preventBubble? 3.9 was not affected by this. Are all shortcodes now '''required''' to do wp.mce.views.register(shortcodename, object) and include edit: function in the object?
Related: (#28169)",programmin
Tickets Needing Feedback,59915,Preview Whilst Editing Broken,,Editor,6.4.2,normal,minor,,defect (bug),new,reporter-feedback,2023-11-16T09:46:01Z,2024-02-09T12:52:31Z,"When editing a page or post, trying to preview using the top right icon results in the URL
wp-admin/undefined
Previewing from the list of posts or pages works OK",simonjonharding
Tickets Needing Feedback,35837,The auto-update in media editor rewrites user inputs,,Media,4.4.2,normal,normal,,defect (bug),new,reporter-feedback,2016-02-15T13:04:34Z,2019-06-04T20:22:32Z,"Hello
while the media editor is opened in ""lightbox"" where the auto-upade is applied the input fields loose their focus on each autoupade making the editing really uncomfortable.
see this video
https://youtu.be/ULmiAf2N6kA
all the fields that you can see in this video were hooked up like so:
https://gist.github.com/twentyfortysix/d7dcdc931aed3f2529a9#file-register_media_field-php",o----o
Tickets Needing Feedback,35504,response to adding data to taxonomy shows in a wrong place,,Taxonomy,4.4.1,normal,normal,,defect (bug),new,reporter-feedback,2016-01-17T22:55:55Z,2020-06-04T05:50:50Z,"Hello,
i created a custom taxonomy and when i try to add an item, item will be successfully add but response from ajax request to add this data show's in wrong place and the table not getting updated. response data showing as the message value instead. i toke screenshot.
and i tested my codes and wordpress healthy time and time over. I'm Sure it's core bug.
[[Image(http://uupload.ir/files/kuv1_bug.jpg)]]",ehsanaghaei
Tickets Needing Feedback,35862,Comments screen: audit all the background color animations,,Comments,3.8,normal,normal,,defect (bug),new,,2016-02-18T17:26:13Z,2019-06-04T19:34:53Z,"Noticed some weird behavior, to reproduce: go in the Comments screen (in the ""All"" view), and mark as spam or move to the trash an '''approved''' comment. The comment row background will quickly ""flash"" to red and then the comment row will disappear.
Do the same on an '''unapproved''' comment: no red flash.
There are also other cases where this happens, seems all related to pending comments. By the way, the JavaScript animations still run and the background is animated behind the scenes. It just can't be seen because the pending comment row background color is now set on the `th` and `td` elements that hide the change on the `tr` background. Looks like this JavaScript part wasn't updated after the CSS changes in WordPress 3.8.
There are also other old things that missed to be updated, for example at some point JavaScript still uses `#FFFFE0`. This was the background color used for unapproved comments in WordPress 3.7 but they use `#FEF7F1` since 3.8.
I'd propose two options:
1. Fix the animations :)
2. Get rid of them. Apparently, not so many users have complained about the (partial) lack of color animations in the last 2 years
I'd lean toward the second option. There are several lines of JavaScript in `edit-comments.js` and `wp-lists.js` that could be removed, they are hard to maintain and being a bit old code they also violate the separation of structure, presentation and behavior principle. Yes, the JS could be refactored and maybe use a more modern approach but for, I'd say, a very little benefit.
So before any patch attempt, this would need a decision. Any thoughts more than welcome.
In the screenshot below, the red flash on pending comments, how it used to be on WordPress 3.7
[[Image(https://cldup.com/Ml9laEw1jQ.png)]]",afercia
Tickets Needing Feedback,31570,Infinite loop when filtering Media Library images by size in a modal (using wp_prepare_attachment_for_js),fuhton,Media,4.1.1,normal,normal,,defect (bug),assigned,dev-feedback,2015-03-09T13:48:25Z,2019-06-04T20:11:46Z,"In an attempt to restrict a post's Featured Image dimensions to imagers wider than 100px I implement the following code in `functions.php`:
{{{
function restrict_media_library_by_width($response, $attachment, $meta) {
if(isset($response['width']) && isset($response['height']) && $response['width'] > 100) {
return $response;
}
return false;
}
add_filter('wp_prepare_attachment_for_js', 'restrict_media_library_by_width', 10, 3);
}}}
I then click ""Set featured image"" and the Media Library modal that appears only loads one empty thumbnail and my Network panel in Chrome Dev Tools reveals it makes continued, repeated, infinite AJAX requests.
The only viable alternative I've found was to run a separate query within `ajax_query_attachments_args`, which is needed because the `_wp_attachment_metadata` key contains serialized data and that leaves no way to compare dimensions within a `meta_query`.
Obviously running this additional query is inefficient and more resource intensive than it should be. More details here: http://wordpress.stackexchange.com/questions/180500/filter-media-library-items-by-size/.",silb3r
Tickets Needing Feedback,27076,double newlines inserted before captions,,Editor,2.6,normal,normal,,defect (bug),new,dev-feedback,2014-02-09T13:35:31Z,2019-06-04T19:25:02Z,"Steps to reproduce:
- Upload some picture in the library and add some caption to it
- Edit a post/page using the visual editor and, after some text, insert the picture using the add media button, so a ""caption"" shorttag is created
- Go into text editing
- Suppress the two newlines that appeared before the ""caption"" shorttag
- Go into visual mode
- Go into text mode: the newlines reappeared
It is important to put something before the picture inserted in order to reproduce the bug, because the two newlines are not inserted if it is at the very beginning of a post/page.
This is annoying for example in a table with top-aligned cells, if in a cell you have some text, and in the cell just to the right you have a ""caption"", then the two won't be aligned, since the newlines are converted to an empty paragraph during the rendering.
From what I saw, the issue could be fixed by just removing the line n° 124 in wp-admin/js/editor.js:
{{{content = content.replace( /\s*\[caption([^\[]+)\[\/caption\]\s*/gi, '\n\n[caption$1[/caption]\n\n' );}}}",arupqfjm
Tickets Needing Feedback,30300,setUserSetting js function only removes first unwanted character,,Administration,2.7,normal,normal,,defect (bug),new,dev-feedback,2014-11-09T17:08:15Z,2019-06-04T19:26:58Z,"The function comments of the function setUserSetting in `wp-includes/js/utils.js` says the following: ""Both name and value must be only ASCII letters, numbers or underscore (...)"". The function removes the unwanted characters with the js `replace` function, in the current code, it only removes the first occurrence of an unwanted character. This is solved by adding the `g` modifier to the replace regex. See the attached patch.
How to reproduce:
* Open your browsers console while you are logged in to your WordPress installation.
* Run the following command: `setUserSetting('test--', 'bad-value-')` (note that the - character is not allowed)
* The console will return `""test-""` (not `""test""` as expected).
* Run `getUserSetting('test-')`.
* The console returns `""badvalue-""` (not `""badvalue""` as expected).
* You may want to delete the setting by executing `deleteUserSetting('test-')`. ",TV productions
Tickets Needing Feedback,19392,Add auto-suggest support for all flat taxonomies in Bulk Edit.,,Quick/Bulk Edit,3.0,normal,normal,,enhancement,new,dev-feedback,2011-11-29T18:37:18Z,2019-06-04T21:07:15Z,"Auto-suggest in the Bulk Edit area for post_tag's was fixed in 3.3. Let's add support for all other non-hierarchy tax's in 3.4.
See [http://core.trac.wordpress.org/ticket/19176#comment:11 #19176] for more info.",scottbasgaard
Tickets Needing Feedback,28185,Expose image attachment title and/or filename in the image details modal,,Media,3.9,normal,normal,,enhancement,new,dev-feedback,2014-05-08T23:46:33Z,2019-06-04T20:07:41Z,"I ran into a case where I had a post with an image I wanted to set as the featured thumbnail. My Media library is very large and I didn't know the file name so I clicked the edit icon on the image to view the Image Details. Nowhere within the image details does it show either the image title, or file name. My suggestion would be to place it next to the words ""Image Details"", but i'm not married to the idea.
The search field in the media library looks for these attributes to filter the library list, it would be convenient if it were clearly labelled within the ""Image Details"" modal.
Additionally, once you do find the image in the media library, both the file name and image title are clearly visible.
I created an annotated video to clearly explain the issue:
https://www.youtube.com/watch?v=lS55abTV7qc",drrobotnik
Tickets Needing Feedback,29312,No recommended nonce refresh functionality in Heartbeat.,,Administration,3.6,normal,normal,,enhancement,new,dev-feedback,2014-08-22T07:49:19Z,2019-06-04T19:26:31Z,"Oddly enough it seems there isn't an obvious way to refresh nonces that may be needed on the page after heartbeat-api login dialog. For example, go to wordpress plugins listing page, notice the activate, deactivate links all have a nonce part in the request.
In a second tab, log out of the site, and go back to plugin listing page.
After awhile, the page realizes it's not logged in, and pops up a log in screen. Log in, and click an ""activate"" or ""deactivate"" button.
Notice it gives the nonce-failure message, ""are you sure you want to do this""? Because the previous session's nonces don't work. Why does Wordpress not know to refresh these nonces? I thought new nonces would be sent back as a heartbeat-ajax, but it looks like there isn't an ajax request with the login screen.
It seems $(document).on('heartbeat-nonces-expired') can be used to detect when this situation happens, but it happens many times after login successful, is not just triggered once.",programmin
Tickets with Patches,31029,Allow 0 columns in gallery settings,rhurling,Media,4.1,normal,normal,,defect (bug),assigned,has-patch,2015-01-15T23:02:38Z,2022-10-26T19:47:56Z,"Gallery columns ""0"" is a valid setting and correctly outputs a proper CSS class
`class=""gallery galleryid-43 gallery-columns-0 gallery-size-thumbnail"">`
Using that CSS class, as a theme author, I could easily build, for example, a grid layout with items displayed inline (or whatever layout other than ""columns""), overriding just a very few CSS rules.
I could set `columns=""0""` manually, however, each time I'd edit the gallery settings through the media views UI, `columns=""0""` would be removed and it would fallback to the default 3 columns.
[[Image(https://cldup.com/7zoOccOC1H.png)]]
I would propose to add and allow a ""none"" columns setting, with value ""0"".
P.S. just noticed: same if I want to add a value higher than ""9"". Setting an arbitrary limit to ""9"" is an assumption that, as developers, we shouldn't do. What if I want, say, 10 images per row?",afercia
Tickets with Patches,29386,Autosave message should disappear when the next autosave happens,,Autosave,,normal,normal,,defect (bug),new,has-patch,2014-08-26T21:17:58Z,2019-06-04T19:26:37Z,"An autosave overwrites the previous autosave, so the message is no longer relevant. It will just display the same content as the current editor.",iseulde
Tickets with Patches,31772,Browser unresponsive with long password,,Users,3.7,normal,normal,,defect (bug),new,needs-unit-tests,2015-03-26T00:47:25Z,2019-06-05T06:40:45Z,"== Steps to reproduce
1. Login
1. Navigate to profile
1. Click in the text input for ""New Password""
1. Paste in a long password
* E.g. 600 characters:
{{{
123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890
}}}
1. Press the ""tab"" key
- **Expected behaviour**:
- The cursor moves to the ""Repeat New Password"" field.
- ""Strength indicator"" changes to ""Strong"" or ""Weak"" (probably should be ""weak"").
- **Actual behaviour**:
- The cursor does not move.
- The cursor stops blinking.
- ""Strength indicator"" does not change.
- The browser is not responsive.
- After several seconds or a minute, the cursor eventually starts blinking, moves to the ""Repeat New Password"" field and the strength indicator changes to ""Strong"" (probably should be ""weak"").
1. Press the ""shift+tab"" keys
- **Expected behaviour**: The focus moves to the ""New Password"" field and its content is selected.
- **Actual behaviour**:
- The cursor does not move.
- The cursor stops blinking.
- The browser is not responsive.
- After several seconds or a minute, the focus eventually moves to the ""New Password"" field and the content is selected.
1. Press the delete/backspace key
- As expected, the password is deleted and the browser is immediately responsive.
My testing was as an administrator using Chrome on Mac OS X. I think this issue applies to any role and any browser on any OS. I expect the delay is longer with slower hardware.
== Solutions ==
Certainly the strength checker need not run on `focus` events. It should only be necessary on `change`.
It could also run after a short timeout (~500 ms) if no other `change` event has occured, so that it only runs when the user stops typing.
An elaborate solution might be to make the password strength checking code more efficient. Or only run it on the first N characters.
Or alternatively, seek a third party library that checks password strengths more performantly.
A simple solution could be to set the `maxlength=""""` attribute on password ``s. Rough testing on Chrome on an 18-month old MacBook Air suggests The limit would probably need to be less than about 64-256 in order to keep the browser responsive (without modifying the unperformant code).
The disadvantage of this approach is that long passwords can not be input by the keyboard, or will be truncated if pasted in. This might be an issue for users that use password managing software like OnePassword. We would need to investigate how long the passwords generated by such software is.
For reference and comparison;
- The server-side limit is currently 4096: https://github.com/WordPress/WordPress/blob/master/wp-includes/class-phpass.php#L217
- If a password is set that is longer than 4096 characters, WP silently fails to save the password.",BevanR
Tickets with Patches,30613,Check the return value of wp_json_encode(),,General,4.1,normal,normal,,defect (bug),new,has-patch,2014-12-06T10:08:13Z,2019-06-04T19:47:01Z,"It's possible for `wp_json_encode()` to return `false`, same as `json_encode()`. Everywhere in core, this will cause either invalid JS to be produced, or invalid JSON to be returned to an ajax call.
We need to sanity check the return value, and switch `false` for an appropriate response.
This ticket is branched from discussion in #28786.",pento
Tickets with Patches,12769,Disappearing posts/pages (in quickedit mode),,Quick/Bulk Edit,2.9.2,low,minor,,defect (bug),new,has-patch,2010-03-30T08:53:39Z,2023-02-17T08:48:36Z,"Steps to reproduce:
1. Quickedit a post.
2. Click save and instanly click quick-edit on another post.
When the ajax-request completes the first quick-edited post will disappear from the posts table. This is only a display bug.",catahac
Tickets with Patches,36157,Permalink UI shown without typing a title,,Permalinks,2.5,normal,normal,,defect (bug),new,needs-unit-tests,2016-03-07T15:11:15Z,2019-06-04T20:55:42Z,"When creating a new post and jumping straight to the content to write a post the permalink UI will still be shown.
'''Steps to reproduce:'''
* 'Add New' post in the admin
* Type content inside the post content field.
* Wait until an autosave triggers and finishes. This step can also be achieved by putting `wp.autosave.server.triggerSave();` inside the console.
'''Expected behaviour:'''
The permalink UI isn't shown because no title has been set yet.
'''Actual behaviour:'''
The permalink UI is shown with a post ID as the slug.",atimmer
Tickets with Patches,35018,The authentication check modal dialog appears just once,,Login and Registration,4.4,normal,normal,,defect (bug),new,has-patch,2015-12-11T17:12:25Z,2019-06-04T20:19:17Z,"Noticed while investigating on #34951. To reproduce:
1. edit a post
2. open a new tab, go in some other admin screen and log out
3. in the tab with the edit post screen, after a while the authentication modal dialog appears
4. login again using the modal dialog
5. repeat step 2
The authentication modal dialog won't appear again because, as far as I see, when it gets hidden the custom event that triggers the dialog gets removed. See `hide()` in `/wp-includes/js/wp-auth-check.js`
{{{
$(document).off( 'heartbeat-tick.wp-auth-check' );
}}}
Not sure why the event is removed.",afercia
Tickets with Patches,31599,White space between visual editor content and status bar,,Editor,4.1,low,normal,,defect (bug),new,has-patch,2015-03-11T18:55:56Z,2019-06-05T06:52:53Z,Happens when the 'path' is hidden.,iseulde
Tickets with Patches,22236,edit.php: Apply when Bulk Actions selected forgets tag= filter,,Quick/Bulk Edit,3.4.2,normal,normal,,defect (bug),new,has-patch,2012-10-20T22:54:28Z,2019-06-04T21:07:50Z,"Using WordPress 3.4.2, go to Posts, and click on one of the tags on one of your posts. The URL now contains tag=, and the screen shows the first 20 posts with that tag.
Now click the Apply button just next to the ""Bulk Actions"" drop-down at the top left.
I expect this to reload the page but otherwise have no effect.
Instead, it reloads the page without the tag= URL parameter, and shows the first 20 posts (irrespective of tag).
This is surprising and confusing - it's easy to accidentally hit ""Apply"" without having chosen an action, but at first glance it looks like nothing has happened. The user can then go on to do a bulk action (e.g., add category) without realising the tag they previously had selected is now no longer selected.
Note that filters (e.g., by category) that are set up using the Filter button *are* preserved when Bulk Actions / Apply is chosen - it's just tags that are lost.",kw217
Tickets with Patches,31577,wp.ajax.send JS function should send ajax request with dataType json,,General,3.6,normal,normal,,defect (bug),new,has-patch,2015-03-09T21:29:46Z,2019-06-04T19:48:03Z,"Occasionally when using the wp.ajax.send JS function defined in wp-includes/js/wp-util.js:70 the system fails to auto-detect that the response is JSON, even when it is a valid JSON string.
Given that the remainder of the code fails if the response is not a valid object it should be safe to add dataType: 'json' to the default options hash defined on line 78 of that file.",TikiTDO
Tickets with Patches,32856,wpColorPicker close should check that iris hasn't been destroyed before toggling it.,,General,4.2.2,normal,normal,,defect (bug),new,has-patch,2015-07-01T14:40:25Z,2019-06-04T19:49:42Z,"wpColorPicker.close() can be called (via the 'click.wpcolorpicker' event on body) when the internally used iris widget has already been destroyed, which means that when it attempts to toggle iris an exception is thrown. The attached patch just checks that iris still exists before the toggle is attempted.
This issue arose in response to the question ""Modify Custom Field in Media Library using JavaScript"" by @Howdy_McGee on Wordpress Development stackexchange http://wordpress.stackexchange.com/questions/193006/modify-custom-field-in-media-library-using-javascript, which can be used to replicate the scenario. If you open the color picker and then, leaving it open, close the Attachment Details modal window, a $.error exception is thrown (or can be - may depend on your system) by jQuery UI Widget, ""cannot call methods on iris prior to initialization"".",gitlost
Tickets with Patches,12826,AJAX trash posts,,"Posts, Post Types",2.9,normal,normal,,enhancement,new,has-patch,2010-04-03T02:57:06Z,2019-07-05T03:15:38Z,"Add AJAX to trash posts, like comment moderation.
From GSoC ideas list:
>Add AJAX Paging to Admin Screens. Something we've never gotten around to is adding AJAX paging to the list-type screens (edit.php, etc). Currently, getting to the next page of items means a screen refresh. For this project, add ajax paging to all the list-type screens in the WordPress admin. We have all the underlying PHP, but it needs some JavaScript love.",meheranandk
Tickets with Patches,36916,Refactor EditAttachments frame to work outside Media Library admin page,,Media,4.5.2,normal,normal,,enhancement,new,has-patch,2016-05-23T02:26:26Z,2019-06-04T20:25:21Z,"The EditAttachments frame/modal is used on the Media Library page to display and edit meta data of attachments. This modal could be useful for plugin/theme developers but a few things tightly couple it to the Media Library:
1. The frame requires a router. This is easily remedied by feeding it a dummy object with two functions it seems to need but I can see this easily refactored using event listeners
2. When opened, the code in the modal deletes all mediaelement.js instances on a page. Not a problem in the media library but if you want to use it on a page with video and audio elements (which I do) it deletes them all from the DOM",Funkatronic
Tickets with Patches,31532,Shiny Updates: Don't activate plugins with PHP errors,,Upgrade/Install,,normal,normal,,enhancement,assigned,has-patch,2015-03-05T04:12:28Z,2020-01-07T23:57:59Z,"Branched from #29820.
When we try to activate a plugin through shiny updates, we shouldn't do it if it causes PHP errors.",pento
Tickets with Patches,27996,Show/Hide Postbox doesn't work if dynamically added,,Administration,3.9,normal,normal,,enhancement,new,has-patch,2014-04-23T17:23:23Z,2019-06-04T19:25:33Z,"If you have a plugin which adds a metabox to the page at runtime, the ""handlediv"" button which shows/hides the contents of that metabox doesn't work.
To fix it, the code (on line 12 of postbox.js and also in postbox.min.js) should change from:
{{{
$('.postbox h3, .postbox .handlediv').bind('click.postboxes', function() {
}}}
To:
{{{
$(document).on('click.postboxes', '.postbox h3, .postbox .handlediv', function() {
}}}
P.S. I have tried to submit a patch in the past but my entire computer had a meltdown and scattered files from here to Mordor to the Shire because I have no idea how to do it properly. This after spending a couple weeks reading up on how to it properly. So, unfortunately, I am not able to submit a patch due to the incredibly difficult-for-me-to-understand SVN system. My Apologies.",johnstonphilip
Unpatched Bugs,28747,$.wpColorPicker cannot duplicate elements,,Widgets,3.9.1,normal,normal,,defect (bug),new,,2014-07-04T09:26:00Z,2019-06-05T06:40:07Z,"I can't `clone()` wrap `div` when I use with `wpColorPicker`. If I just running the `$.wpColorPicker` method again, I see two instance about this.
What I can to do for duplicate?",KingYes
Unpatched Bugs,28989,AJAX in the media library sometimes fails to load data,,Media,3.5,normal,normal,,defect (bug),new,,2014-07-22T20:23:57Z,2019-06-04T20:08:35Z,"I added video and want to replace it now and since AJAX failed (only on this single page, there are no errors when I hit F12 and go to ""Console"" though) I have no other option then to refresh entire page:
[[Image(http://i.gyazo.com/6379480b489e206bfe0b06b06288579b.png)]]
I'm using 4.0-beta2-20140722. I think it wasn't happening that often in 3.9.1 but I may be wrong.",Looimaster
Unpatched Bugs,22940,Adding term checklist to Media modal has undesired results,,Media,3.5,normal,normal,,defect (bug),new,,2012-12-14T14:59:27Z,2019-06-04T20:04:30Z,"If you use '''attachment_fields_to_edit''' to add a term checklist to the media modal, there is no way to know when a term is unchecked. I propose that when a checkbox is clicked in the compat section, all the checked boxes of the same name are passed in the POST request.",jfarthing84
Unpatched Bugs,30505,Backbone subviews cannot be attached directly to DOM elements,,Administration,,normal,normal,,defect (bug),new,,2014-11-26T06:22:26Z,2019-06-04T19:27:07Z,"Right now, you need selectors to attach subviews. Even if you have a direct reference to an element in the DOM, it's not possible to attach to this directly.
This is an issue when you're working with an existing DOM structure to attach views, and the elements don't have unique identifiers for a selector.
Backbone itself is happy to let you do this in a lot of places; this is why you can pass in `el` when constructing a view, for example. However, `wp.Backbone.Views` uses `! _.isString` to overload some of the function parameters, which means you can never pass it through.",rmccue
Unpatched Bugs,33553,"Bug with Linebreak before figcaption, fixed and then revert to make a fix elsewhere",,Formatting,4.2,normal,normal,,defect (bug),new,,2015-08-26T10:56:24Z,2019-06-04T19:51:03Z,"A linebreak is inserted before in the WYSIWYG editor on edit pages.
A fix for #25646 was applied in commit 1842c2b on 13 Mar 2104 - Change set was [27527].
This was then reverted to make a fix for #29219 but the dev then caused the original bug to reappear. The commit is 6b84df3 on 16 Jan 2015 - Change set [31186].
A fix for the orignal bug is now needed again.",hughie.molloy
Unpatched Bugs,35785,"Concatenating ""wp-post-new-reload=true"" with URL repeatedly",,Administration,,normal,normal,,defect (bug),new,,2016-02-09T18:33:12Z,2019-06-04T19:34:27Z,"Concatenating ""wp-post-new-reload=true"" with URL repeatedly when a meta box has required field and user click on ""Publish"" button without filling it properly:
http://screencast-o-matic.com/watch/cDnQFFhRcR
",codename065
Unpatched Bugs,26113,"Create a WordPress-specific, dependable reference to the WP-bundled jQuery object.",,Script Loader,,normal,normal,,defect (bug),new,,2013-11-19T16:46:11Z,2019-06-04T21:09:37Z,"When enqueueing jQuery for use on the front end of a site in a plugin or theme, a common concern is that the theme or another plugin has injected its own version of jQuery (probably an older version). This causes no end of support headaches for me as a plugin author.
I've recently taken drastic measures in one of my plugins:
I'm hooking in to `wp_enqueue_scripts` at -9999 and starting a buffer, then collecting it at `wp_head` 9999. I'm looking for the WP-included jQuery script tag, and then inserting this immediately after it:
``
Then in my JS, I do:
{{{
;(function (w) {
var jQ = w.jQueryWP || w.jQuery;
// my jQuery code here, using jQ
})(window);
}}}
I think that having a dependable reference to WP's jQuery object would be quite useful. One way to solve it would be to just add the line to our copy of jQuery. But that will cause issues with people who use well-behaved CDN plugins to swap out WP's jQuery for a Google-hosted copy of jQuery (note: THE SAME VERSION). So maybe a better way to do it would be to create a way to append inline JS code immediately after the inclusion of a particular script handle. We could then do what I'm doing in my plugin, but without the nasty PHP output buffers.
",markjaquith
Unpatched Bugs,33344,"Do not force draggable elements on touch devices, stop using touch-punch.js",,General,,normal,normal,,defect (bug),new,,2015-08-11T22:07:01Z,2019-06-04T19:50:32Z,"Having draggable elements on touch screen devices doesn't work well in most cases. It interferes with the standard scrolling, dragging an element off the page doesn't scroll it either. Examples: Menus, Widgets, Dashboard (rearranging the layout), Customizer => Menus and Widgets, etc. This is especially bad on Android as drag/drop is disabled for iOS in several places.
",azaozz
Unpatched Bugs,27427,Edit Gallery view does not display images in original aspect ratio,,Media,3.5,normal,normal,,defect (bug),new,,2014-03-15T18:38:26Z,2019-06-04T20:07:06Z,"Тhe new gallery preview does display thumbnails in their original aspect ratios, although the modal for creating and editing the gallery does not.
The goal is to show the thumbnails in their original ratio which happens when the thumbnails are not square. This happens, for example, if the thumbnail size in Media Settings is 200 (W) x 400 (H), ""Crop thumbnail to exact dimensions"" is not checked. Placement of a certain thumbnail within the gallery often depends on the orientation, and it is very difficult if we show a square shape instead of the real shape.
More details:
https://core.trac.wordpress.org/ticket/26959
http://wordpress.org/support/topic/edit-gallery-square-thumbnails-vs-portrait-and-lanscape?replies=2",Greybox
Unpatched Bugs,30759,"If Featured Image is selected, but not saved, editing the image will drop the selection after a save",,Media,4.0.1,normal,normal,,defect (bug),new,,2014-12-18T07:56:17Z,2019-06-04T20:10:14Z,"To reproduce:
Create a new post.
Click on an image to select it.
Click on Edit Image link, edit image, and save.
Image selection menu has changed dimensions, and the selection state has returned to its prior state.
If a featured image has already been assigned to the article, selecting another image, and editing it will return the user to an image selection screen with the prior featured image selected.",DavidTheMachine
Unpatched Bugs,35085,"Image editor not cropping correctly when image size is the same as ""Large Size"" in media settings",,Media,4.4,normal,normal,,defect (bug),new,,2015-12-14T22:49:02Z,2019-06-04T20:19:52Z,"This issue was reported as an issue for the plugin Imsanity here: https://wordpress.org/support/topic/imsanity-breaks-the-image-editor?replies=10
However, after research, it appears this behavior happens regardless of the plugin. A video demonstrating the error is at: https://www.youtube.com/watch?v=3a6UbuPrlmU&feature=youtu.be
To reproduce:
1. Ensure media settings for ""Large Size"" are set to 1024px
2. Upload a landscape image with a width of exactly 1024px to the media library
3. Click the ""Edit"" button to edit the image, and use the crop tool to make an obvious change. The image will appear to have been cropped at this point
4. Click the ""Save"" button and now the image will no longer appear to be cropped
The image now seems to be in an unknown state where the preview shows the un-cropped version, but in the editor the crop shows correctly.
",verysimple
Unpatched Bugs,30243,"Media Library cached, does not update when other users add images",,Media,3.5,normal,normal,,defect (bug),new,,2014-11-03T22:28:26Z,2019-06-04T20:09:47Z,"When you open a post or page in the editor, and you click Add New, the media library pops up a grid with the n most recent images.
If you upload something new, it's added to the list. However, if a colleague uploads something new (via another computer or browser), then you don't see the image the colleague uploaded in the media library — unless you search for it.
",paulschreiber
Unpatched Bugs,36722,"No way to access media ""Attachment Display Settings"" using wp.media",,Media,4.5.1,normal,normal,,defect (bug),new,,2016-04-29T15:55:47Z,2020-03-12T05:51:47Z,"I am using custom wp.media request to get WP Media uploader iframe on front end.
Added scripts, styles and media:
{{{
wp_enqueue_script('jquery');
wp_enqueue_media();
wp_enqueue_style( 'wp-admin' );
}}}
then I am using JS to open the Media iframe:
{{{
var custom_uploader;
jQuery(document).ready(function($){
if (custom_uploader) {custom_uploader.open();return;}
var parent_container = parent.document.body;
custom_uploader = wp.media.frames.file_frame = wp.media({
frame: 'post',
state: 'insert',
title: 'Choose Image',
library : {type:'image'},
button: {text: 'Choose Image'},
multiple: false
});
custom_uploader.on('insert',function(){
var attachment = custom_uploader.state().get('selection').first().toJSON();
console.log( attachment );
});
custom_uploader.open();
});
}}}
after selecting needed image, link and size I get the result:
{{{
{""id"":2182,""title"":""WordPress"",""filename"":""WordPress.jpg"",""url"":""http://localhost:8080/mgwebthemes.com/uploads/2015/05/WordPress.jpg"",""link"":""http://localhost:8080/mgwebthemes.com/wordpress/"",""alt"":"""",""author"":""1"",""description"":"""",""caption"":"""",""name"":""WordPress"",""status"":""inherit"",""uploadedTo"":2166,""date"":""2015-05-13T09:09:47.000Z"",""modified"":""2015-05-13T09:09:47.000Z"",""menuOrder"":0,""mime"":""image/jpeg"",""type"":""image"",""subtype"":""jpeg"",""icon"":""http://localhost:8080/mgwebthemes.com/wp-includes/images/media/default.png"",""dateFormatted"":""13/05/2015"",""nonces"":{""update"":""2d7619f512"",""delete"":""725c6d8639"",""edit"":""709844b592""},""editLink"":""http://localhost:8080/mgwebthemes.com/wp-admin/post.php?post=2182&action=edit"",""meta"":false,""authorName"":""admin"",""uploadedToLink"":""http://localhost:8080/mgwebthemes.com/wp-admin/post.php?post=2166&action=edit"",""uploadedToTitle"":""Test"",""filesizeInBytes"":8990,""filesizeHumanReadable"":""9 kB"",""sizes"":{""thumbnail"":{""height"":150,""width"":150,""url"":""http://localhost:8080/mgwebthemes.com/uploads/2015/05/WordPress-150x150.jpg"",""orientation"":""landscape""},""full"":{""url"":""http://localhost:8080/mgwebthemes.com/uploads/2015/05/WordPress.jpg"",""height"":249,""width"":201,""orientation"":""portrait""}},""height"":249,""width"":201,""orientation"":""portrait"",...}
}}}
it does not contain any Attachment Display Settings options.",chattyboy
Unpatched Bugs,31778,Opening the collapsed admin menu doesn't close toolbar submenus,,General,,normal,normal,,defect (bug),new,,2015-03-26T20:31:38Z,2019-06-04T19:48:36Z,"On a narrow touch device, toolbar dropdowns only open one at a time, but opening the admin menu does not close any dropdowns and is shown behind any open dropdowns, making it impossible to get to any of the higher items. This is particularly bad because you can't always close the submenu (see #29906). Opening the admin menu should close any other toolbar dropdowns - it's fine to continue to have toolbar dropdowns open over the admin menu if it's already open.",helen
Unpatched Bugs,35077,Post featured image: image attributes not updated on the fly,,Media,4.4,normal,normal,,defect (bug),new,,2015-12-14T15:31:40Z,2019-06-04T20:19:41Z,"Noticed while investigating on #35076.
When a post has a featured image, users can click the image to set a new featured image or edit the current one. When editing the current image attributes, changes are not reflected live in the UI after the image is inserted again.
To reproduce:
- edit a post with a featured image
- click on the featured image
- in the media dialog, update the current featured image alt attribute
- click the button ""Set featured image""
- check the featured image in your console inspector: the alt attribute is not updated
Looks like the AJAX action `wp_ajax_set_post_thumbnail` takes into account only the ""set"" and ""delete"" cases, there's nothing to handle an update.
Additionally, when removing a featured image '''and''' there's some error and the response is `0`, `WPRemoveThumbnail` should trigger an alert with a message but `setPostThumbnailL10n` is undefined (the related `set-post-thumbnail` script is not enqueued at all, I'm guessing it was used in the old media uploader).",afercia
Unpatched Bugs,34188,Post lockdown,,Editor,4.3.1,normal,normal,,defect (bug),new,,2015-10-07T10:46:43Z,2019-06-04T19:32:44Z,"Assume having two users.
First user clicks on edit post and then edits and updates the post (e.g: Test Post). After updating the post the first user straight away logs out from admin area.
Now, second user logs in to admin area and navigates to the post area. The post updated by the first user (Test post) shows ""First user is currently editing the post"" notification and is in a lockdown state.
",danish.iqbal
Unpatched Bugs,35932,"Square brackets for shortcodes can't be entered with default Czech, Slovak and maybe other keyboards",,Editor,,normal,normal,,defect (bug),reopened,,2016-02-24T11:16:12Z,2019-06-04T19:35:00Z,"In Czech, Slovak, and probably some other languages, we have dedicated right alt click for writing some lesser used characters. E.g. for writing [ you need to press Right Alt plus F
And that's the problem, as this combination is in wysiwyg editor shortcut for opening wysiwig in full screen window. So it is not possible for us to write any shortcode, unless we switch keyboard or write it elsewhere and copy to editor or remember the numeric value of the symbol and writing it on numlock.
I am not sure, and i doubt, that this can be solved via language .pot file (so that every language could define the keys for every shortcut), and i have not found, where it is defined. I know that tinymce got addShortcut method, bot no delete or edit shortcut....
it is wrong in both trunk and latest",thomask
Unpatched Bugs,36933,TinyMCE failing when using ModPagespeed,,Administration,4.5.2,normal,normal,,defect (bug),new,,2016-05-24T15:07:41Z,2019-06-04T19:38:18Z,"TinyMCE Stops working correctly When using ModPagespeed module.
TypeError: wp.svgPainter is undefined
I needed to edit this file to fix the issue:
/wp-admin/js/svg-painter.js
",franmaWp
Unpatched Bugs,32057,fix: allow plugins to access click event in edit inline post,,"Posts, Post Types",2.7,normal,normal,,defect (bug),new,,2015-04-22T12:03:58Z,2019-06-04T20:49:45Z,"I wanted to add custom functionality to inline post edit, but there is code that prevents me from doing this.
---trunk---
in /wp-admin/js/inline-edit-post.js, line 53
{{{
51: $('#the-list').on('click', 'a.editinline', function(){
52: inlineEditPost.edit(this);
53: return false;
54: });
}}}
fix:
{{{
51: $('#the-list').on('click', 'a.editinline', function(e){
52: inlineEditPost.edit(this);
53: e.preventDefault();
54: });
}}}
but first time appered in 2.7
{{{
82: addEvents : function(r) {
83: r.each(function() {
84: var row = $(this);
85: $('a.editinline', row).click(function() { inlineEditPost.edit(this); return false; });
86: });
87: },
}}}
",wasikuss
Unpatched Bugs,29634,gallery bulk upload,,Media,4.0,normal,normal,,defect (bug),new,,2014-09-11T22:38:24Z,2019-06-04T20:09:10Z,"when i am uploading alot 500 images, and then some error happens... i don't have any way to retry uploads on queue , showing a list with numbers would help to verify how many elements are loaded and if are the same that we have selected.",joxxxe
Unpatched Enhancements,32849,Allow option of Grid AND List View of the gallery when inserting media into post,,Media,,normal,normal,,enhancement,new,,2015-07-01T00:24:57Z,2023-10-18T16:27:12Z,"I’ve looked around quite extensively for this, but can it appears this feature simply doesn't exist in WP currently.
Basically, when you’re on a post and want to either “insert media” or select “featured image”, you cannot view the gallery list on a post using the “list view”. Rather the only option appears to be the default “grid view”.
The ""list view"" interface is already available in Gallery, is there any reason why this isn't available in the post editor as well?
I've seen a number of requests for this online, especially when there are installations that have a large number of images that are similar (and thus you need to easily see the meta information to differentiate).",ashkas
Unpatched Enhancements,13247,Drag/drop for add menu item boxes,koopersmith,Menus,3.0,normal,normal,,enhancement,new,,2010-05-04T07:12:03Z,2019-06-04T20:02:06Z,Because checkboxes are no fun. This first patch covers dragging from view all and most used. Search still has bugs.,koopersmith
Unpatched Enhancements,36312,Inline link toolbar: add advanced panel,,Editor,,normal,normal,,enhancement,new,,2016-03-23T20:36:56Z,2019-06-04T19:35:35Z,Attempt to move advanced fields in the link modal to the inline link toolbar (under the gear icon) and make it easily extendible. Thoughts are welcome. :),iseulde
Unpatched Enhancements,15204,JavaScript Validation should trim values and set focus on invalid field,,Taxonomy,3.1,normal,normal,,enhancement,assigned,,2010-10-24T15:46:28Z,2019-06-04T21:06:12Z,"If invalid fields are found after validation, focus should be placed on the first invalid field. Field values should be trimmed to check for truly empty values.
Also worth noting, the (mostly same) validateForm is located in both common.js and wpAjax.js.",batmoo
Unpatched Enhancements,33287,Prompt the user before leaving during core upgrade,,Upgrade/Install,4.1.6,normal,normal,,enhancement,new,,2015-08-06T05:19:32Z,2024-03-12T19:39:16Z,"Yesterday I was updating a test site (from 4.1.x to 4.2.x) using update-core.php and I accidentally clicked 'back' button during installation, which aborted the update process when it wasn't finished yet. This resulted in breaking the site completely (call to undefined function wp() ). It could have been easily prevented by simple beforeunload prompt.",helium-3
Unpatched Enhancements,31283,Setting poster image for videos inside a video playlist is not very intuitive,,Media,4.2,normal,normal,,enhancement,new,,2015-02-10T15:43:13Z,2019-06-04T20:11:16Z,"This is somehow a follow-up to #27891.
When you create a video playlist, it's very hard to understand how to change the poster images of the videos.
Here is the workflow :
1. Upload some videos
1. Create a new article and insert one single video
1. Edit the inserted video to open the media modal again, and select a poster image for your video
1. Nice !
1. Create another article and insert a video playlist
1. When you choose video, the one that was inserted in the previous article is shown with the poster image instead of the default video icon : very nice !
1. For other videos, there is no way to select a poster image, neither during initial playlist creation, nor after having inserted the playlist :-(
1. To select a poster image, you have to go back to the main Media menu, find the right video and edit its details, and then set the featured image (that you guessed it was the same as the poster image)
I see at least three ways to improve that workflow.
1. In the ""Edit video playlist"" modal, add a ""Select poster image"" menu, similar to the one that exists in the ""Video details"" modal for the video shortcode.
1. When browsing videos in the media modal, add a link to set the poster image, in the same manner that the ""Edit image"" link works for images
1. When browsing videos in the main Medias menu, add a link to set the poster image, in the same manner that the ""Edit image"" link works for images
1. Bonus : change ""Featured Image"" title to ""Poster image"" in the video attachment post edition page
1. Big Bonus : when browsing videos in the main Medias menu, add a button ""take a screenshot and set as poster"" when a video is shown. This will load the video into a canvas, generate an image from this canvas, send the image to the server and set it as poster !
",Fab1en
Unpatched Enhancements,31534,Shiny Updates: Language pack install support,,Upgrade/Install,,normal,normal,,enhancement,new,,2015-03-05T04:14:59Z,2019-06-04T21:14:19Z,"Branched from #29820.
With the addition of the FTP credentials screen, it'd be nice if language pack installation could make use of it.",pento
Unpatched Enhancements,31006,Use classes instead of setting and directly animating background colors in JS,,Administration,,normal,minor,,enhancement,new,,2015-01-14T05:32:10Z,2019-06-04T19:27:37Z,"Directly setting hex values in JS doesn't tell us much about what the color is being used for, whereas setting a class name is much more semantic. Also, jQuery UI can animate color changes when using addClass/removeClass/toggleClass/switchClass - no need to use .animate() directly and do things like getting background colors of surrounding elements.
This is very tightly related to #25060 and blocks it. I am working on it.",helen
Unpatched Enhancements,21171,jQuery Events for Metaboxes,,Administration,,normal,minor,,enhancement,new,,2012-07-05T21:35:47Z,2019-06-04T19:23:09Z,"Currently, when a plugin adds a metabox with complex objects (like TinyMCE, Maps, CodeMirror etc) care must be taken to refresh the objects when the elements are moved (including hidden/shown).
After some digging, I've found that this seems to works in most cases:
{{{
var context = ""#custom_meta_box_id"";
$( '#adv-settings' ).on( 'click', context + '-hide, ', refresh );
$( context ).on( 'click', '.hndle, .handlediv', refresh );
$('.meta-box-sortables').bind( ""sortstop"", refresh );
}}}
which isn't terrible, but seems fragile if core changes in the future, and there should just be a better way :-)
Two ideas from dev chat are triggering custom events or the (coming soon) ""js actions"" which would be more robust (like php actions).",WraithKenny
Unpatched Enhancements,35179,playlist shortcode needs an option to not loop,,Shortcodes,4.3,normal,normal,,enhancement,new,,2015-12-21T08:42:40Z,2019-06-04T21:18:45Z,"It would be great if we could have a loop=""no"" attribute for the playlist shortcode. The audio and video shortcodes support this, but for [playlist] the behavior is hardcoded into the javascript.",john k c
Unpatched Enhancements,36842,"More global event hooks using the media.events, like ""modal:open"", ""modal:close"", etc",,Media,4.6,normal,normal,,feature request,new,,2016-05-15T00:30:04Z,2019-06-04T20:25:03Z,"There seem to be plentiful hooks in the media backbone system, but most require listening to the frame/controller/etc vs having global hooks/events to listen to. This, obviously, would be much like WP's `do_action`. Each event should pass contextual info including the frame/controller/etc object.
Select2 (as well as most JS modal libs) provides an example of prior art: [https://select2.github.io/examples.html#events]
Using that implementation as an example, we could do something like:
`wp:media:open` is fired whenever the modal is opened. `wp:media:opening` is fired before this and can be prevented.
`wp:media:close` is fired whenever the modal is closed. `wp:media:closing` is fired before this and can be prevented.
`wp:media:highlight` is fired whenever a result is highlighted (clicked).
`wp:media:unhighlight` is fired whenever a result is unhighlighted.
`wp:media:select` is fired when a result is chosen and modal is closed. `wp:media:selecting` is fired before this and can be prevented.
`wp:media:change` is fired whenever the modal changes state. `wp:media:changing` is fired before this and can be prevented.
",jtsternberg
Slated for Next Release,58051,Attachment custom fields not rendered after upload,antpb,Media,6.2,normal,normal,6.6,defect (bug),assigned,,2023-04-02T02:23:40Z,2024-03-06T16:20:39Z,"This is a follow-up to #40909.
Attachment custom fields added via `attachment_fields_to_edit` are no longer rendered just after an image is uploaded.
Clicking away and back will restore the custom field markup, but is quite inconvenient.",trepmal
Slated for Next Release,54091,Attachment details pane navigation not working after opening 81st (or greater) item and refreshing the browser,antpb,Media,5.8,normal,trivial,6.6,defect (bug),assigned,dev-feedback,2021-09-08T19:02:34Z,2024-02-21T16:16:25Z,"Setup:
- clean 5.8;
- twentytwentyone active;
- no plugins active.
Steps to reproduce:
- open media page;
- click on the 41st item in the list;
- notice the left arrow is enabled (which is to be expected, since there are previous items);
- refresh the page.
Notice the left arrow now - it's disabled.
Not sure if this is intended, but since the item isn't loaded (in the grid), there's no previous but there's only next, which points to the first item. Clicking the right arrow goes to the it and you can't go back to the previous item.",ppetrov2c
Slated for Next Release,60548,Image editor: improve the browsePopup function,joedolson*,Media,6.3,normal,normal,6.6,defect (bug),accepted,,2024-02-15T14:10:11Z,2024-03-06T16:59:58Z,"While auditing all the remaining jQuery deprecations still to address in core, I noticed a couple things that offer room for improvements in the `browsePopup` function of the core image editor.
1. The `browsePopup` function uses the `window.event` property, which is deprecated and should not be used. This is the `global` event. Instead, the event should be passed as a function parameter. Aside: instead of using inline events, it could have been better to consider a more modern approach.
2. When using the keyboard to navigate the items in the 'Image rotation' dropdown menu, the page scrolls. See attached animated GIF. There's some code in place to prevent page scrolling you may need to reduce your viewport height.
See [55919] / #50523
",afercia
Slated for Next Release,59991,Included imagesLoaded libary broken,,External Libraries,6.4,normal,normal,6.6,defect (bug),new,dev-feedback,2023-11-30T10:48:57Z,2024-02-17T14:24:15Z,"On the current WordPress release version, the included imagesLoaded javascript file is broken. The minified file appears to include two minified versions of the actual script and breaks functionality. To reproduce, see wp-includes/js/imagesloaded.min.js. ",physalis
Slated for Next Release,49950,Twenty Twenty (1.2) Horizontal menu - Submenu,joedolson,Bundled Theme,,normal,normal,6.6,defect (bug),assigned,has-patch,2020-04-18T16:04:32Z,2024-03-05T15:24:47Z,"Hi there!
I've tried adding a submenu in the horizontal menu but there is some issue regarding accessibility when I tested it.
It fails the Success Criterion 1.4.13 Content on Hover or Focus of WCAG : https://www.w3.org/TR/WCAG21/#content-on-hover-or-focus
The submenu cannot be dismissed. If there are many links in the submenu, keyboard navigation is tedious since the person will have to tab all of the content of the submenu before reaching the next item of the menu.
Expected fix:
The submenu should be dismissable with the Esc key for example.
Here is a menu with a submenu that implements the SC 1.4.13 : https://www.eesc.europa.eu/
It's my first ticket, so I hope I'v done it properly.
Regards,
Luce",lcarevic
Slated for Next Release,60666,Unwanted section appears as a sidebar in 'Create gallery' section,joedolson*,Media,5.0,normal,normal,6.6,defect (bug),accepted,,2024-03-01T09:04:35Z,2024-03-06T16:46:30Z,"Unwanted section with 'Actions' and 'Create gallery' texts appear in the sidebar of Media Library and nothing happens on selection or click of the texts.
To find the issue, please go through the below steps.
1.From the 'File' block add the block 'Gallery', then select Media Library.
2.Unwanted sidebar section with the specified texts appears.",ukdrahul
Slated for Next Release,37287,wp_print_admin_notice_templates() does not use _n*() for plural forms,swissspidy,I18N,4.6,normal,normal,6.6,defect (bug),assigned,,2016-07-05T12:23:24Z,2024-02-28T14:25:48Z,"Function wp_print_admin_notice_templates() (https://core.trac.wordpress.org/browser/trunk/src/wp-admin/includes/update.php#L615) does not properly use _n() and related functions for plural forms of its strings. It just makes a simple if (count ===1) check and uses two different strings - one for singular, one for plural form.
This presents a problem when translating into languages that have more than one plural form, or more complicated rules for singular form usage. For example, in Lithuanian we also use singular form for 21, 1241 and any other number that ends with 1 (except for 11). And we have two plural forms - one for numbers ending with a zero, another for everything else. In current situation we can not have a proper translation here. ",ideag
Slated for Next Release,51006,Add a mechanism for accessible tooltips in core,joedolson*,General,,normal,normal,6.6,enhancement,accepted,dev-feedback,2020-08-14T14:56:32Z,2024-02-12T14:59:51Z,"While we've worked hard to eliminate usage of the title attribute across most of WordPress core, there is still an occasional need for that type of contextual information, and the lack of it is a barrier to resolving some issues (e.g. #50921) and removing some of the last instances of the title attribute.
An accessible tooltip will need to meet these criteria:
1) Be available either via the mouse, via the keyboard, or via touch.
2) Be persistent until dismissed
3) Support primary & auxiliary usage, dependent on whether the tooltip is the sole name of the control or an elaboration of existing text.
Useful reference on accessible tooltips: https://inclusive-components.design/tooltips-toggletips/
",joedolson
Slated for Next Release,58479,Add notice if no posts are selected in Bulk Edit,quadthemes,Quick/Bulk Edit,6.2.2,normal,normal,6.6,enhancement,assigned,has-patch,2023-06-08T07:13:01Z,2024-02-18T16:10:37Z,"On the Posts screen(s), clicking the bulk actions Apply button without selecting any posts does not show an error message.
1. Visit the Posts screen.
2. Choose ""Edit"" in the Bulk actions dropdown.
3. Without checking any checkboxes, click the Apply button. Nothing seems to happen.
4. Choose ""Move to Trash"" in the Bulk actions dropdown.
5. Click the Apply button. The page reloads but cannot move anything to Trash.
6. Choose ""Bulk actions"" at the top of the Bulk actions dropdown.
7. Click the Apply button. The page reloads with a query string in the URL.
I have checked and it should be a message on the page/post list as per added notice message on the plugin page.
For more information, you can see mentioned quick video.
Thank you",sumitsingh
Slated for Next Release,35833,"Adding a table with the ""widefat"" class on post and taxonomy list table screens causes the quick edit UI and bulk edit to fail",,Quick/Bulk Edit,4.4.2,normal,normal,6.6,enhancement,assigned,has-patch,2016-02-15T05:11:47Z,2024-02-12T09:19:40Z,"This is a very strange issue. On a fresh WP install running twentysixteen with no plugins activated, including this code causes the quick edit UI to miscalculate its width and end up looking wacky:
{{{
add_action( 'load-edit.php', 'xxx_test_table_in_help_tab' );
function xxx_test_table_in_help_tab() {
$test_table_args = array(
'id' => 'test_help_table',
'title' => 'Something',
'content' => '
Something
',
);
get_current_screen()->add_help_tab( $test_table_args );
}
}}}
I'm attaching a screenshot of what the quick edit UI looks like with this code in place. Removing the class ""widefat"" restores the quick edit UI to normal. As strange as it sounds, I believe the presence of the widefat class is causing something in the quick edit JS to miscalculate. I haven't found the exact line where the issue is, but it seems to all come down to the presence of the ""widefat"" class.",Braad
Slated for Next Release,60673,Indicate submenu item level in admin nav menu editor and customizer nav menu editor,rcreators,Menus,,normal,normal,6.6,enhancement,assigned,,2024-03-02T03:31:57Z,2024-03-05T15:23:23Z,"Follow up to #32728
Following the closure of #32728, both navigation menu interfaces indicate whether an item is in a submenu. It would improve the experience for screen reader users to indicate what level an item is at.",joedolson
Slated for Next Release,40493,"On the Edit User Profile page, prevent losing data when clicking links",joedolson*,Users,,normal,normal,6.6,enhancement,accepted,has-patch,2017-04-20T12:08:37Z,2024-03-12T16:00:25Z,"On the Edit User Profile, open the ""You can change your profile picture on Gravatar."" link in a new window.
Reason being that otherwise it causes the user to loose any data that they have edited in the form, but not yet saved.",ashokrane
Slated for Next Release,60647,Script Modules: Allow modules to depend on existing WordPress scripts,jonsurrell,Script Loader,trunk,normal,normal,6.6,feature request,assigned,,2024-02-27T15:40:59Z,2024-03-07T11:09:26Z,"Script modules cannot depend on existing scripts such as `wp-url`, `wp-i18n`, or `wp-api-fetch`.
Script modules should be able to leverage the functionality available in existing scripts.",jonsurrell
Tickets Awaiting Review,57365,"""Attempt Block Recovery"" functionality broken for buttons ""Convert to.."" click",,Editor,6.1.1,normal,normal,Awaiting Review,defect (bug),new,,2022-12-21T12:16:37Z,2022-12-30T05:56:34Z,"When i edit the HTML manually and click away, the ""Attempt Block Recovery"" error appears.
== BUG:
**Clicking on the ""''Convert to HTML''"" or ""''Convert to Blocks''"" does nothing.**
[[Image(https://i.imgur.com/fzLTpaH.png)]]
The button ""Attempt Block Recovery"" itself works and reverts the action to the previous state before I edited the html.
I also screenshotted the red text from the console:
[[Image(https://i.imgur.com/1l0PjIv.png)]]",mikulabc
Tickets Awaiting Review,60082,"""Copied"" tooltip should be hidden when another attachment URL is copied (in list mode)",,Media,6.0,normal,normal,Awaiting Review,defect (bug),new,,2023-12-15T13:05:00Z,2024-03-12T15:39:27Z,"In the media list view, clicking the ""Copy URL"" action link displays previously clicked ""Copy URL"". The previously clicked row showing ""Copied!"" when hover the media again.
=== Environment
- WordPress: 6.4.2
- PHP: 8.2.0
- Server: Apache/2.4.54 (Unix) OpenSSL/1.0.2u PHP/8.2.0 mod_wsgi/3.5 Python/2.7.18 mod_fastcgi/mod_fastcgi-SNAP-0910052141 mod_perl/2.0.11 Perl/v5.30.1
- Database: mysqli (Server: 5.7.39 / Client: 8.2.0)
- Browser: Firefox 119.0 (macOS)
- Theme: Twenty Twenty-Four 1.0
- MU-Plugins: None activated
- Plugins:
* WordPress Beta Tester 3.5.5
=== Steps to Reproduce
1. Go to media library
2. Click ""Copy URL"" of one of the media.
3. Click ""Copy URL"" of another media.
4. The previously clicked row showing ""Copied!"" when hover the media again.
=== Expected Results
1. The previously ""Copied!"" tooltip should be close after clicking the next one.
=== Actual Results
1. The previously clicked row showing ""Copied!"" when hover the media again.",jayadevankbh
Tickets Awaiting Review,40899,'&' Is always escaped in the JavaScript template.,,General,4.7.5,normal,normal,Awaiting Review,defect (bug),new,,2017-06-01T08:41:12Z,2020-09-08T13:05:47Z,"When I tried the JavaScript template, '&' was always escaped.
Source:
{{{
}}}
Rendering:
{{{
&
Unscaped: Wo&r'l""d
Escaped: W<i>o</i>&r'l""d
}}}
While checking the interpolation of the variable, '&' was always converted to '& amp;'.
Is this a specification or a bug?
",tmatsuur
Tickets Awaiting Review,35887,Adding multiple media to post - selecting image size,,Media,4.4.2,normal,normal,Awaiting Review,defect (bug),new,,2016-02-20T12:03:10Z,2023-10-25T04:35:24Z,"When clicking ""Add Media"" to add images to a post, you can select multiple images. With all images selected, logic follows that if you change the ""ATTACHMENT DISPLAY SETTINGS"" size from default ""Medium"" to ""Full Size"", that all selected images would have the same setting changed, but when you add them, only the one image that was highlighted is actually ""Full Size"" and the rest which were selected, but not highlighted, are still ""Medium"".
I think when adding multiple media, all should be changed to size that is selected in ""ATTACHMENT DISPLAY SETTINGS"".",myburgh.bernard@…
Tickets Awaiting Review,31416,An accessibility issue with the Publish metabox,,"Posts, Post Types",4.1.1,normal,normal,Awaiting Review,defect (bug),new,,2015-02-22T22:03:33Z,2018-12-09T20:28:05Z,"Taking a closer look at the Publish metabox for posts I realise that it has what I would call a bug. Take a look at the image attached. It tells me a post is published, while it's still asking for confirmation to be published. This screen shows up when first a post is set to private -and so gets published privately- and next is set to public, without hitting the 'Publish' button.
The post is actually published privately, which should show up as it's status, as it normally does. It tells me though it's published (which impies it should be published publicly).
I stumbled upon this, while I was searching for a more intiutive solution for inexperienced posters on one of my sites to post privately. I found two threads in forums which adress this issue:
https://wordpress.org/support/topic/how-to-set-new-post-visibility-to-private-by-default?replies=14
http://wordpress.stackexchange.com/questions/118970/set-posts-of-a-custom-post-type-to-be-private-by-default
Neither of threads mention (or seem to be aware?) of this shortcoming, while both try to solve the same issue I'm having. I question whether this problem can be solved, while the Publish metabox has such shortcomings.
I hope that by fixing this little bug, it might actually be possible to create a more accessisble Publish metabox for guests on a site, maybe by a hack or plugin, but preferably within the WP core files.
[[Image(http://www.basbva.nl/wp-content/uploads/2015/02/publish-metabox-bug.jpg)]]",basbva
Tickets Awaiting Review,58432,"BUG: Custom Core Block Variation details not updated in ""Settings Sidebar"" section",,Editor,,normal,major,Awaiting Review,defect (bug),new,,2023-05-31T06:10:30Z,2023-06-13T16:31:52Z,"**Issue:**
When adding a custom **core block variation**, the details ( title, icon, description ) are not updated in the **""Settings Sidebar""** section. Hence there is no way to distinguish between custom core block **variations** and core **blocks** once a block is added.
**How to reproduce:**
1. Add support for block variations to your existing theme.
{{{
function prefix_editor_assets() {
wp_enqueue_script(
'prefix-block-variations',
get_template_directory_uri() . '/assets/js/blocks/block-variations.js',
array( 'wp-blocks' )
);
}
add_action( 'enqueue_block_editor_assets', 'prefix_editor_assets' );
}}}
2. Create a custom **core block variation**
{{{
wp.blocks.registerBlockVariation(
'core/group',
{
name: 'card-group',
title: 'Card group',
description: 'A group with card styling',
label: 'Card group',
icon: 'wordpress',
attributes: {
className: 'card-group',
},
innerBlocks: [
[ 'core/heading', { content: '' } ],
[ 'core/paragraph', { content: '' } ],
]
}
);
}}}
3. Check inside editor for new core block variation.
4. Add new core block variation and check the siderbar with the block selected.
Attaching pic & screen recording of the issue as well.
Note: I used the following tutorial by **Carolina Nymark** to create the variation
https://fullsiteediting.com/lessons/block-variations/
",deepakvijayan
Tickets Awaiting Review,51446,CORS issues with QUnit while running tests,,Build/Test Tools,5.5,normal,normal,Awaiting Review,defect (bug),new,dev-feedback,2020-10-05T04:01:48Z,2020-11-10T02:05:09Z,"Hello,
For a while I've been having an error when running `grunt test` with the qunit tests;
{{{
Running ""qunit:files"" (qunit) task
Testing tests/qunit/compiled.html ......................................................................................................................................................................................................................................................................................................OK
Testing tests/qunit/index.html Access to XMLHttpRequest at 'file:///wp-admin/admin-ajax.php' from origin 'null' has been blocked by CORS policy: Cross origin requests are only supported for protocol schemes: http, data, chrome, https.
Failed to load resource: net::ERR_FAILED
......................................................................................................................................................................................................................................................................................................OK
>> 588 tests completed with 0 failed, 0 skipped, and 0 todo.
>> 1738 assertions (in 8024ms), passed: 1738, failed: 0
}}}
Looking into this a little I was able to resolve these by updating the `tests/qunit/index.html` to use localhost for the ajax urls.
Uploading patch but am unsure if it's the correct action, seems to work nicely for me at least and suppresses the error.",garrett-eclipse
Tickets Awaiting Review,57973,Can not delete custom template when name contains non-Latin characters,,REST API,6.1.1,normal,normal,Awaiting Review,defect (bug),new,has-patch,2023-03-23T14:23:48Z,2023-03-26T16:14:09Z,"I can create a custom template whose name contains non-Latin characters.
But when I delete this template.
It failed without any message in the front-end.
I can only find out the error message in the developer tools.
The ajax post request '/wp/v2/templates/theme_name//template_name' returns 404.
I think the problem is caused by the two slashes before none-Latin template_name.
To reproduce:
1. create a new template with non-Latin characters in post editor.
2. save the template, re-enter a post editor.
3. choose the template, and click 'edit template'.
4. open your browser's developer tools with the network tab.
5. click 'delete template', then you will see the 404 error in your developer tools.",funway
Tickets Awaiting Review,42794,Can't upload new media files when multiple media dialogues are present on a single page,,Media,3.7.19,normal,normal,Awaiting Review,defect (bug),new,has-patch,2017-12-04T16:01:05Z,2018-01-19T09:44:09Z,"'''Layman error description''': When there are more than one Inline Media Uploader on a page in the Admin, and one tries to upload a new image or file to the Media Library, the upload gets stuck and the image is never inserted into the media library (see attached screenshot). This happens to me when using the post-types-definitely plugin to create multiple media fields in a CPT. The exact same error (including error messages) has been described before ([https://wordpress.org/support/topic/js-bug-prevents-uploading-media-in-pagepost-editor/?replies=11#post-6860868] and https://wordpress.org/support/topic/error-uploading-media-in-post-if-yoast-is-active/#post-6922117), and even though there it was related to a plugin combination, it is not in my case. The workaround proposed there is not applicable to my case and the error source I found has nothing to do with plugins.[[BR]][[BR]]
'''Technical error description''': When examined in the Firefox Developer Tools, the console shows the error `TypeError: this.$index is undefined`. In Chrome, the error is `Cannot read property 'text' of undefined`. Both of them point to `wp-includes/js/media-views.js:UploaderStatus.info()` [https://core.trac.wordpress.org/browser/trunk/src/wp-includes/js/media-views.js?rev=40359#L8361][[BR]][[BR]]
'''Technical analysis''': Upon closer inspection of the code, the problem seems to be as follows: When we upload a file (by clicking Ok on the OS file dialogue), a callback handler calls info() on each UploadStatus object belonging to a loaded media dialogue. The method info() relies on the fact that normally, the method ready() on the same UploadStatus object is called before the call to info(). ready() uses JQuery to set (amongst others) the member variable $index inside the UploadStatus object. info() then tries to access this.$index on all UploadStatus objects and set their contents using the JQuery text() function. However, since ready() is not called before a media dialogue is opened for the first time, and our opened dialogue calls info() on all media dialogues, the access to this.$index fails in the unopened UploadStatus objects, throwing the above Javascript Error and making the script abort, therefore freezing the upload progress bar.[[BR]][[BR]]
'''Workarounds''': This analysis is confirmed by the fact that when I open all media dialogues on the page at least once before uploading an image in any of them, uploading works as expected (because all of the UploadStatuses are ready() and have their $index member variable defined). A workaround for the problem is to just use the inline media dialogues for selecting existing media from the media library, and using the Media->New menu to actually upload any files. The error happened in all Wordpress versions I tested (since 4.8.3).[[BR]][[BR]]
'''Proposed solution''': I can see a number of different solutions for this problem. The best one would be to only call info() on the UploadStatus belonging to the opened media dialogue. However, the info() calls are performed via a single event trigger ([https://core.trac.wordpress.org/browser/trunk/src/wp-includes/js/media-views.js?rev=40359#L8289]) that all info() methods subscribe to in the UploadStatus.initialize() function (relevant for this bug is the `""add""` trigger), and this trigger cannot distinguish its subscribers. Therefore I propose to instead call ready() at the end of the initialize() function. This way, ready() is only called once more than before per media dialogue and page load, and we can be certain that info() is only called on UploadStatuses that are ready().",carlobeltrame
Tickets Awaiting Review,56039,Classic Editor: Current selection is not preserved when switching Visual to Text editor,,Editor,,normal,normal,Awaiting Review,defect (bug),new,has-patch,2022-06-22T11:58:49Z,2023-04-19T13:25:23Z,"Plugin: Classic Editor
== Problem
In some cases (when formatting HTML attributes is disabled), the current selection when switching Visual to Text editor is not preserved. The selected text gets unselected and the editor does not jump to the previous selection position.
This is because the regular expression is not appropriate.
**Line 774 in `wp-admin/editor.js`**
The regular expression to find the selection position is:
{{{#!js
var startRegex = new RegExp(
']*\\s*class=""mce_SELRES_start""[^>]+>\\s*' + selectionID + '[^<]*<\\/span>(\\s*)'
);
}}}
This works well with:
{{{#!xml
}}}
However, it does not work **when ""class"" is the last attribute**:
{{{#!xml
}}}
----
== Solution
Changing `+`(1 or more) to `*`(0 or more) in the regular expression makes it work.
`wp-admin/editor.js`
**Line 775**
{{{#!js
']*\\s*class=""mce_SELRES_start""[^>]+>\\s*' + selectionID + '[^<]*<\\/span>(\\s*)'
}}}
↓
{{{#!js
']*\\s*class=""mce_SELRES_start""[^>]*>\\s*' + selectionID + '[^<]*<\\/span>(\\s*)'
}}}
**Line 779**
{{{#!js
'(\\s*)]*\\s*class=""mce_SELRES_end""[^>]+>\\s*' + selectionID + '[^<]*<\\/span>'
}}}
↓
{{{#!js
'(\\s*)]*\\s*class=""mce_SELRES_end""[^>]*>\\s*' + selectionID + '[^<]*<\\/span>'
}}}",shge
Tickets Awaiting Review,42459,"Comments metabox doesn't load all the comments when clicking ""Show more comments"" link",,Comments,4.8.3,normal,normal,Awaiting Review,defect (bug),new,,2017-11-07T18:04:17Z,2018-07-31T18:11:29Z,"Recently, I found an issue related to the Comments meta-box on a post edit screen. To reproduce the bug, go to the article with a certain number of comments. Suppose there are 25 comments. Then go to the post edit screen, enable the comments and scroll down to view all the comments(you will see 10). Then click the link ""Show more comments"" at the bottom of the section. You will see the second part of the comments (10 again), and the link ""Show more comments"" will disappear. You may notice that you can't load the remaining comments(5).
Why this happened? My short investigation below.
I found that on my opinion there is a mismatch in amount of loaded comments between the ''commentBox'' object(`/wp-admin/js/post.js`) and comments meta-box init script(`/wp-admin/includes/meta-boxes.php`).
First have a look at `/wp-admin/includes/meta-boxes.php:741`
{{{#!php
}}}
As you can see there are 10 comments set to be loaded.
Then go to `/wp-admin/js/post.js:42-45`
{{{#!js
if ( ! num )
num = 20;
this.st += num;
}}}
As you can see there is default `num` value set to 20. Important: then commentBox.st was increased by a `num` value.
But now have a look at ""Show more comments"" link onclick attribute.
{{{#!php
Show more comments
}}}
As you can see `commentsBox.load(26)` call will update `commentBox.st` but then `commentBox.get(26, 20)` will be called (because `num = 20`). But to fit the init script(`meta-boxes.php`) it should be `commentBox.get(26, 10)`.
My solution here is to set default `num` value to 10. So I guess `/wp-admin/js/post.js:42` should looks like this:
{{{#!js
if ( ! num )
num = 10;
}}}
Let me know if I missed something and we can't accept new default `num` value.
I have tested it on my local end. It works well after I changed `num` default value to 10.",rku4er
Tickets Awaiting Review,45106,Concerns related to moving mce_external_plugins filter to WP_Scripts::__construct,,Script Loader,5.0,normal,normal,Awaiting Review,defect (bug),new,,2018-10-17T13:19:26Z,2019-01-16T22:59:17Z,"In r43723 the `mce_external_plugins` filter was moved to a function called via `wp_default_scripts` which, in turn, is called from `WP_Scripts::__construct` (via `WP_Scripts::init`).
While the `wp_default_packages_inline_scripts` function calling the `apply_filters( 'mce_external_plugins'` is only triggered in case the `did_action( 'init' )` returns true, there might be cases when the `WP_Scripts` object is being reinitialised after the `init` and thus code hooked to `mce_external_plugins` trying to enqueue or register a script causes an infinite loop, since the constructor of the `WP_Scripts` class is calling the filter, which calls the constructor again.
This does not feel like something what would matter in 99% of time, but, for instance, this breaks core unit tests which are reinitialising the WP_Scripts object, eg.: `Test_WP_Customize_Selective_Refresh::test_register_scripts`. in case such a piece of code is being used.
An example of a code used in a mu-plugin and breaking the mentioned test:
{{{#!php
Please wait ...
}}}
you will receive an error in the web development console section:
{{{
GET https://DOMAIN.COM/wp-includes/js/tinymce/plugins/code/plugin.min.js
Status 404 Not Found
}}}
== Does problem occur when all plugins deactivated and use the default theme?
N/A
== what is the expected output or result? What did you see instead?
The expected outcomes would be:
1) the direcotry and file '//DOMAIN.COM/wp-includes/js/tinymce/plugins/code/plugin.min.js'would be available
2) tinymce would show the code icon
3) no error displayed
== additional information
Not that this really matters for this, more related to wordpress version
os: alma 8.8
php: 7.4.33 AND 8.1
browser: not applicable
",jobst
Tickets Awaiting Review,43505,Display of html encoded text in dashboard.,,Plugins,,normal,normal,Awaiting Review,defect (bug),new,,2018-03-08T21:59:56Z,2018-03-08T22:57:45Z,"I have discussed the issue in this thread https://make.wordpress.org/polyglots/2018/02/26/hello-18/, I report here the issue of the display of the text in UI, not the editorial choice of the translation itself.
In fr_FR and fr_CA, there where changes done (last year?) to accomodate french ponctuation typographic rules but also, I guess, make sure the text doesnt fall on two line inadvertantly (ex. ""text !"", so a non-breaking space is inserted instead of a space).
This non-breaking space is inserted as html encoded entity and it looks like it is displayed as is, without decoding like it is visible in this exemple screenshot : https://imgur.com/a/iVy9h
",anonym999999
Tickets Awaiting Review,50554,Do not use iframe for plugin information dialog,,Plugins,,normal,normal,Awaiting Review,defect (bug),new,,2020-07-03T22:38:07Z,2020-10-08T23:11:45Z,"When you click a plugin title in the Add Plugins page, the plugin information dialog displays inside an iframe. This causes a problem if your htaccess file has X-Frame-Options: DENY. A solution to this problem would be to not use an iframe for the dialog.",techboyg5
Tickets Awaiting Review,49894,Drag & Drop image upload error on multisite install when no upload space available,,Editor,,normal,normal,Awaiting Review,defect (bug),new,,2020-04-13T13:19:19Z,2020-12-15T05:38:22Z,"On a multisite installation, a maximum upload space can be limited.
When using the classic editor and it's drag-and-drop upload feature while not having enough available space for a site, the image file ends up being loaded in the browser (at least in chrome) with following JS error in console:
{{{
Uncaught TypeError: Cannot read property 'uploader' of undefined in wp-includes/js/media-views.js:5268
}}}
See: https://core.trac.wordpress.org/browser/trunk/src/js/media/views/uploader/editor.js?rev=46800#L161
I would expect the classic editor to display an error similar to the one which is being displayed in media modal when attempting to upload a file while not having any available space:
{{{
Upload Limit Exceeded
Sorry, you have used your space allocation of 1 MB. Please delete some files to upload more files.
}}}
",david.binda
Tickets Awaiting Review,46557,Dragging image to uploader directly from another website causes redirection,,Upload,,normal,normal,Awaiting Review,defect (bug),new,,2019-03-18T16:28:19Z,2019-03-18T16:28:19Z,"1. Drag image from another website to editor
2. Image is handled correctly and embeded in content (by hotlink, but some may argue it's desired behavior)
1. Open Media Library modal (or Media admin page)
2. Drag and drop image from another website
3. Dropzone overlay is presented indicating ability to drop image to upload
4. Redirection to image URL is fired instead
There is no issue when image is dragged to Desktop first and then from Desktop to Library.",marsjaninzmarsa
Tickets Awaiting Review,54706,EMBED AND IMAGE SLIDER DON'T WORK,,Post Formats,,normal,major,Awaiting Review,defect (bug),new,,2021-12-29T10:24:43Z,2021-12-29T10:24:43Z,"The blocks ""**Embed**"" and ""**Image Slider**"" does not work. As I view my articles with incognito, these two blocks didn't show anything. Just a white blank.
This article is an example: [https://nowmods.com/simple-realistic-3d-far-cry-6/]
Some capture for more specific: [https://drive.google.com/drive/u/0/folders/1sl_xIjjaQwe3UVhz4ZnFCSNsQr1NuSDH]
Really glad if there will be some fix on this!
Thank you.",anhdoan
Tickets Awaiting Review,28053,Fields with same name added to new media modal using 'attachment_fields_to_edit' do not pass as an array when saving.,joedolson*,Media,3.5,normal,normal,Awaiting Review,defect (bug),accepted,has-patch,2014-04-28T11:44:53Z,2021-03-03T17:55:07Z,"If you use the 'attachment_fields_to_edit' to add a set of checkboxes to the media modal attachment details (to implement a better UI for taxonomies for example) the save method of media.view.AttachmentCompat doesn't cater for fields with the same name to be passed as an array, it just passes the last field of that name that is found.
When getting the fields to save, if multiple fields with the same name are found they should be passed as an array.
I have attached a visual of the custom UI with checkboxes and a patch for testing.",husobj
Tickets Awaiting Review,56421,"Fix scrolling in Block Editor ""Editor Content"" inside ""Group Block""",,Administration,,normal,normal,Awaiting Review,defect (bug),new,has-patch,2022-08-23T13:04:55Z,2022-09-06T16:31:35Z,"When I am navigating with my up/down keyboard buttons inside a Group Block in the Block Editor ""Editor Content"" does not scroll until I scroll below the Group Block.",ritterml
Tickets Awaiting Review,57142,Fix to the deprecated code inside wp-tinymce.js,,TinyMCE,6.1.1,normal,normal,Awaiting Review,defect (bug),new,,2022-11-18T04:15:45Z,2022-11-18T16:54:06Z,In the current version `Event.path` is used in `wp-tinymce.js` which is deprecated and need to be replaced with `Event.composedPath()`,isrgrajan
Tickets Awaiting Review,56429,Gutenberg author box missing,,Editor,6.0.1,normal,normal,Awaiting Review,defect (bug),new,,2022-08-24T14:03:31Z,2022-11-05T22:30:57Z,"There is a bug related to the author box missing when all of the following conditions are true:
- When there are more than 70 users in a WP installation
- When an Editor creates a post and saves it as a draft. This must be the only post of that user
- If all the users are ordered alphabetically, that user must be above 60 in the order
When this is true, if another Editor opens that draft, the author box won't be visible. There is an additional request that should fetch that user and it's returning error 403
If Administrator opens it, the author box is present
The cause for the bug is the last condition that fails here - https://github.com/WordPress/WordPress/blob/master/wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php#L445 because the function checks for the author of the post",lgadzhev
Tickets Awaiting Review,53863,Gutenberg fails with wp 5.8,,Editor,5.8,normal,critical,Awaiting Review,defect (bug),new,,2021-08-03T01:40:57Z,2021-08-03T07:38:03Z,"I had to rollback to fix this. The WP 5.8 Gutenberg crashed with this info:
TypeError: Cannot read property '$el' of undefined
at new m (https://bestredlighttherapy.com/wp-includes/js/dist/media-utils.min.js?ver=5e105975fcfe18922cd4f0163466f454:2:3795)
at Yg (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:68:243)
at rh (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:98:274)
at zj (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:228:490)
at Th (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:152:223)
at tj (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:152:152)
at Te (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:146:151)
at https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:61:68
at unstable_runWithPriority (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react.min.js?ver=16.13.1:25:260)
at Da (https://bestredlighttherapy.com/wp-includes/js/dist/vendor/react-dom.min.js?ver=16.13.1:60:280)
I did turn off all plugins and switched to the default theme. Only rolling back the main version allowed me to get into Gutenberg.",dogrescuer
Tickets Awaiting Review,55368,Handle ajax failure when doing actions on themes/plugins,,Administration,5.9.2,normal,normal,Awaiting Review,defect (bug),reopened,,2022-03-11T05:36:32Z,2022-05-30T17:21:05Z,"When maintenance mode is active or the server is unresponsive for any reason, there are some ui issues in ajax-related messages like:
- When trying to delete a plugin: ""Deleting..."" forever. No error shown.
- When trying to enable auto-updates on a plugin: ""Enabling..."" forever. ""The request could not be completed"" error is shown. Same for disabling.
- When trying to delete a theme: ""Deletion failed: undefined"" error shown.
- When trying to enable a theme: ""Enabling..."" forever. ""The request could not be completed."" error shown. Same for disabling.
Check the screenshots attached below.
I tried to stay short in title description but I'm not sure it's 100% clear.",mirkolofio
Tickets Awaiting Review,57284,IMG tag in Custom HTML widget and also in post made w/ Classic Editor causes 404 on save/update,,Widgets,6.1.1,normal,major,Awaiting Review,defect (bug),new,,2022-12-06T15:51:46Z,2022-12-06T16:41:39Z,"I am running two blogs, both with the latest version of WordPress, 6.1.1. (I first noticed this on my previous version installed, 6.0.3 but have since updated, which did not solve the problem.)
This issue exists on both WordPress installs I am running, to be clear.
No need to walk through my discovery process here, but I noticed I could not save and edit I made to an existing Custom HTML widget - it would just sit w/ the save gif spinning. I noticed in the console it threw a ""Failed to load resource: the server responded with a status of 404 (Not Found)"". I then created a new test Custom HTML widget and it saved and was editable no problem. Much experimenting later, I found that the presence of a standard HTML ""img"" tag broke the save. I added full alt, title, src attribs to the tag - no change. I even used a blank ""img"" tag with no attribs at all -- the save still broke. 404.
I had earlier run across an inability to edit and save old posts created with the Classic HTML plug-in, which was something I used to do all the time. I could create a new post and save it and edit it fine. Seemed odd. I just went back and added an ""img"" tag to the post and -- boom -- ""page not found."" Same issue, it seems. That's why I could not save my edit of the old posts -- all of them have an ""img"" tag or two in them.
It seems that the presence of such a tag causes the AJAX submit to be corrupted somehow. The error, on Widget save, points to the file admin-ajax.php. I will attach a screenshot of the situation, for what it's worth.
I can't say when this issue (which seems the same issue, to me as a web developer, between the two different examples here) began, but I've certainly edited content in the above fashion without incident in the past year. Right now I cannot edit or create Custom HTML widgets with images, and must -- for posts -- resort to using the block editor on the classic posts and dealing with the less-than-ideal HTML Source view it presents to make edits.
Many thanks and I do hope this can soon be resolved.
blakespot@gmail.com",blakespot
Tickets Awaiting Review,41314,"If the required fields are not set on user profile's save, every field's value will be dropped",jackjohansson,Users,4.8,normal,normal,Awaiting Review,defect (bug),assigned,has-patch,2017-07-13T17:43:36Z,2023-10-11T19:45:23Z,"Hi,
In the user profile screen, there are some required fields such as email and nickname.
Let's say I have added some extra fields using `edit_user_profile` and `show_user_profile` action hooks. These fields are filled by the user, and do not have to be required.
If the user fills every field (let's say 20 fields, took 10 minutes to fill) but clears the email field and save the form, there will be shown an admin error:
'''ERROR''': Please enter an email.
Every field that was filled by the user will be dropped, and has to be refilled.
The point is, until the required fields are empty, there is no reason to let the user save the form in the first place.
This issue has been discussed in the WordPress Development StackExchange. I've posted 3 solutions for this issue, which can be improvement or bug resolve.
Below is a link to the question on WPSE. I would be happy to write an accurate solution, in case the development team decides to push this into their future patches.
https://wordpress.stackexchange.com/q/272940/94498
King regards,
Jack",jackjohansson
Tickets Awaiting Review,43668,"Image cropping fails for many PHP locales, if set",,Media,,normal,normal,Awaiting Review,defect (bug),new,dev-feedback,2018-03-30T16:12:10Z,2022-03-24T05:15:44Z,"If{{{#!php
with > within
tag,,Editor,5.0.2,normal,major,Awaiting Review,defect (bug),new,dev-feedback,2019-01-04T13:09:07Z,2020-01-14T19:07:58Z,"Hi,
I just updated to WordPress 5 and started using the new block editor.
I typeset source code in my posts using a
tag. This code contains a > comparison operator. Upon saving my draft, > gets replaced with >, and this entity is also displayed in the article preview.
This happens even if I disable the visual editor.
The old editor does not present this bug and installing the Classic Editor extension allowed me to work around this.",yannsalmon
Tickets Awaiting Review,60072,No upper limit restriction for number of posts set via Site Editor and the value entered by the user chang,,Themes,,normal,normal,Awaiting Review,defect (bug),new,,2023-12-14T12:41:07Z,2024-02-15T16:24:55Z,"=== Description
No upper limit restriction for number of posts set via Site Editor and the value entered by the user changes
=== Environment
- WordPress: 6.4.2
- PHP: 7.4.33
- Server: Apache/2.4.54 (Unix) OpenSSL/1.0.2u PHP/7.4.33 mod_wsgi/3.5 Python/2.7.18 mod_fastcgi/mod_fastcgi-SNAP-0910052141 mod_perl/2.0.11 Perl/v5.30.1
- Database: mysqli (Server: 5.7.39 / Client: mysqlnd 7.4.33)
- Browser: Chrome 118.0.0.0 (macOS)
- Theme: Twenty Twenty-Four 1.0
- MU-Plugins: None activated
- Plugins:
* WordPress Beta Tester 3.5.5
=== Steps to Reproduce
1. Goto Site Editor
2. In the No. of posts per page option give a huge number and save the changes
x. 🐞 Bug occurs.
=== Expected Results
1. ✅ It should show the maximum number of posts allowed per page exceeded validation message or the value added by the user
=== Actual Results
1. ❌ Goto Site Editor again and we can see the number changed to 9223372036854776000
2. There is no upper limit validation and the value entered by the user changed to some random values
[[Image('https://ibb.co/gygWt9N')]]
[[Image('https://ibb.co/RywQtrH')]]
",jomonthomaslobo1
Tickets Awaiting Review,55390,Not able to choose Color picker in customizer when the blocks are added in widget,,Editor,5.9.2,normal,major,Awaiting Review,defect (bug),new,,2022-03-15T13:21:58Z,2022-03-16T09:17:28Z,"Hi Team,
I hope you are doing well and safe!
I would like to highlight an issue with the color picker in the customizer when using the blocks in widgets.
1. For choosing the custom color, whenever you click on the color selection, it will trigger a click event where it will ask you to leave the site or not?
Here is the screenshot: https://share.bsf.io/YEur81BW
2. The color selection palette is not properly displayed.
Here is the screenshot: https://share.bsf.io/wbuzJ0zq
Furthermore, I have gone ahead and found that this issue is coming from WordPress version 5.9.2
Also, I have demonstrated a video that would help you check it on your end too.
This issue is occurring on default themes as well as other famous themes as well.
Here is the screencast: https://share.bsf.io/yAuKoy2J
I would suggest you please check this on priority and release a patch for this issue, as users are facing lots of issues due to this.
Looking forward to your response.",nileshc
Tickets Awaiting Review,43295,One theme update notice is showing in another Theme Details popup,,Themes,4.9.4,normal,normal,Awaiting Review,defect (bug),new,,2018-02-12T12:23:43Z,2021-01-15T12:56:53Z,"Steps to reproduce this bug:
1. Go to Appearance -> Themes
2. Click on the ""Update Now"" link showing on theme thumbnail. It will start updating the theme.
3. Now in the same time, click on the Theme Details by hovering over another theme.
4. It will display a popup of the theme details. Hold on few seconds while the theme gets updated.
5. You will see the green ""Updated"" notice in this popup of another theme.
See the attached screenshots.",ibachal
Tickets Awaiting Review,49859,Post autosave called multiple times,,Autosave,5.4,normal,major,Awaiting Review,defect (bug),new,,2020-04-09T12:15:18Z,2020-04-09T12:15:18Z,"Hi everyone.
I found an issue, which is mostly not related to wordpress core but the fix should be handled in wp core itself.
autosave.js works just great except one point.
If there is move than one wysiwyg editor in admin post edit screen (no matter how it is added, in my case it is created ACF plugin, but it can be just a custom meta box field implemented as wysiwyg editor field ), and there is and autosave for current post, then 'tinymce-editor-init.autosave' jquery event triggered on jQuery(document) will call checkPost() js method wysiwyg editors count times. As a result ""The backup of this post in your browser is different from the version below"" notice is rendered the same count times.
If there are 6 wysiwyg editors including wp native one (I have 5 custom ones), 'tinymce-editor-init.autosave' is called 6 times, and as a result ""The backup of this post in your browser is different from the version below"" notice is rendered 6 times.
This is very easy to reproduce.
Please review.
Thanks in advance.
Rafik I.",Rufus87
Tickets Awaiting Review,57753,Quickedit characters on date fields,,Quick/Bulk Edit,6.1.1,normal,trivial,Awaiting Review,defect (bug),new,,2023-02-17T09:45:45Z,2023-02-22T20:51:17Z,"I know this isn't a massive issue as content editors should use their common sense, but it seems like a user can enter random characters into the date/times via quick edits
- Select a post
- Press ‘Quick Edit’
- Try to insert letters, special characters in the ‘year’, ‘month’, ‘hour’, ‘minutes’ fields
- Press ‘Enter’
",garbagedisco
Tickets Awaiting Review,56250,ReferenceErrors encountered when running QUnit tests,,Build/Test Tools,,normal,normal,Awaiting Review,defect (bug),new,,2022-07-19T16:35:59Z,2023-08-07T17:44:51Z,"When running QUnit tests, there are a handful of errors output:
{{{
Error: ReferenceError: QUnit is not defined
at :130:13
at HTMLDocument. (:132:2)
}}}
Even with these errors, no tests actually fail.
The number of errors also differences between `grunt qunit` (3) and `grunt qunit:compiled` (6).",desrosj
Tickets Awaiting Review,35216,Return empty string from wp.shortcode.replace() callback is ignored,,Shortcodes,3.5,normal,normal,Awaiting Review,defect (bug),new,has-patch,2015-12-24T11:58:32Z,2018-06-27T04:46:19Z,"I was trying to just remove a shortcode by returning empty string from `wp.shortcode.replace()` callback.
**For example**
{{{
var text = ""This is some content with shortcode. [foo]some content[/foo]
text = wp.shortcode.replace('foo', text, function(tag){
// attributes and content values are broken.
return '';
});
}}}
The callback function simply get ignored. No replacement happened for the shortcode. If I return anything other then empty string for example `' '` (string with space) it does replace the shortcode.
I am not sure if this behavior was intended or not.
",prionkor
Tickets Awaiting Review,29030,Screen Options Poor Update/Rendering Causes Many things to Break,,Administration,3.9.1,normal,normal,Awaiting Review,defect (bug),new,dev-feedback,2014-07-26T01:21:46Z,2018-08-08T19:15:02Z,"Screen options dont work properly in many different situations. I noticed the first issue when trying to create a sticky header plugin for the wp_list_table. When scrolling down the page the headers stick to the top by cloning the header with javascript and hiding the other original at the same time. However, If screen options are updated the tables break completly even after the plugin is disabled. Wordpress checks the current table headers to determine which ones are hidden and should be added to the `manageedit-{$post_type}columnshidden` field in the `user_meta` table. So since the cloned table header the plugin created is hidden visually while scrolling up, wordpress thinks that all columns aredisabled and adds all the columns to `manageedit-{$post_type}columnshidden`.
[[Image(http://i.stack.imgur.com/wrYin.png)]]
This is poor practice because it doesn't seperate presentation well enough from the logic used to render screen options. Any user who has access to `wp-admin/edit.php`can completly break their tables if any html/css visually hides the `` or a column-header perhaps by a plugin, or maybe the browser doesn't load a certain script, or perhaps they are just messing with the dev-tools. Beginers that don't know how to properly [remove columns][5], could run into this issue if they ever try to use css instead. `manageedit-{$post_type}column` should not rely on the visibility of and only the actual checked input fields. Also `cb` and `title` should not be allowed to be added to the `manageedit-{$post_type}column`. They should only be able to be removed with `unset`.
----------
**To recreate this issue:**
1. open up firebug/chrome dev tools/etc. on http://www.example.com/wp-admin/edit.php
2. add `thead {display: none;}` to the style editor
3. On the page screen options uncheck at least one column ( this is to ensure `manageedit-{$post_type}columnshidden` is a database field for the current user and if not it creates it )
4. Hit apply to refresh the page
*The tables will now be broken....*
----------
To chck the columns I used the `get_user_meta();` function to print the array of `hiddencolumns` on each post types `edit.php` admin screen notices:
{{{
post_type)
return $post->post_type;
elseif ($typenow)
return $typenow;
elseif ($current_screen && $current_screen->post_type)
return $current_screen->post_type;
elseif (isset($_REQUEST['post_type']))
return sanitize_key($_REQUEST['post_type']);
return null;
}
function get_current_user_manageedit_pagecolumnshidden() {
$current_ptype = get_current_post_type();
$user_id = get_current_user_id();
$key = 'manageedit-'.$current_ptype.'columnshidden';
$single = true;
if(get_user_meta($user_id, $key, $single))
return get_user_meta($user_id, $key, $single);
}
function echo_current_user_manageedit_pagecolumnshidden() {
global $pagenow;
if ( $pagenow !== 'edit.php' )
return;
$columnshidden= get_current_user_manageedit_pagecolumnshidden();
echo '
'; print_r( $columnshidden ); echo '
';
}
add_action('all_admin_notices', 'echo_current_user_manageedit_pagecolumnshidden');
}}}
**Output for the broken tables :**
{{{
Array
(
[0] => cb
[1] => title
[2] =>
[3] =>
)
}}}
----------
After determining that `cb` & `title` were in fact added to the `$meta_value`you need to fix the table. This will do the trick:
{{{
function delete_current_user_manageedit_pagecolumnshidden() {
$user_id = get_current_user_id();
$meta_key = 'manageedit-pagecolumnshidden';
if( get_user_meta($user_id, $meta_key) )
delete_user_meta( $user_id, $meta_key );
}
add_action ('admin_init', 'delete_current_user_manageedit_pagecolumnshidden');
}}}
''Side-Notes:''
*`columnshidden` appears [`wp_ajax_hidden_columns()`][1] & [`get_hidden_columns()`][2]
*client-side functionality appears to be here in [`common.js`][3] which checks for the [hidden table headers][4]
----------
Similar issues with the screen options can be recreated for different situations that have nothing to do with the tables.
**Recreate similar issue on nav-menus.php**
1. Go to http://example.com/wp-admin/nav-menus.php
2. Uncheck all the fields in the *""Show advanced menu properties""* Screen-Options tab
3. Add the screen options filter to hide them from display: `add_filter('screen_options_show_screen', 'remove_screen_options_tab');`
4. Reload http://example.com/wp-admin/nav-menus.php
All of the hidden advanced menu properties will now be broken and are all visible even though they were unchecked. I'm not sure if this is the same issue, but it appears that overall screen options have a high change of not working properly
----------
----------
**Other-Notes**
These issues of broken tables might also have to do with the same functionality problem of how screen options update/render:
http://wordpress.stackexchange.com/questions/31154/wp-list-table-custom-quick-edit-box-post-meta-data-missing-and-columns-change
http://wordpress.stackexchange.com/questions/123182/custom-admin-column-disappearing-when-using-quick-edit?lq=1
http://wordpress.stackexchange.com/questions/144361/wordpress-admin-wp-table-list-show-incorrectly
#21016
[1]: https://github.com/WordPress/WordPress/blob/448275cce483138f53ccfa586b2d28b7fe8b0785/wp-admin/includes/screen.php#L55
[2]: https://github.com/WordPress/WordPress/blob/270a57075c290736387b6551670fde34fb3f1851/wp-admin/includes/ajax-actions.php#L1307
[3]: https://github.com/WordPress/WordPress/blob/448275cce483138f53ccfa586b2d28b7fe8b0785/wp-admin/js/common.js#L29
[4]: https://github.com/WordPress/WordPress/blob/448275cce483138f53ccfa586b2d28b7fe8b0785/wp-admin/includes/screen.php#L17
[5]: http://codex.wordpress.org/Plugin_API/Filter_Reference/manage_$post_type_posts_columns",codecandid
Tickets Awaiting Review,40737,Script tags inside unclosed HTML comment in value passed to WP_Script->localize() breaks page,,Script Loader,,normal,normal,Awaiting Review,defect (bug),new,has-patch,2017-05-11T19:26:30Z,2017-06-01T18:45:45Z,"Hi. Thanks for your time. I encountered an edge case with the WP_Script->localize() method that can cause malformed html and cause javascript on the page to break.
Our site has a custom field for adding pixel tracking code html snippets. On the post edit admin page, the values from the custom fields are run through the localize method by the Wordpress-SEO plugin which adds their values to the wpseoReplaceVarsL10n var.
One of our users pasted code into this field like the following:
{{{
}}}
This gets serialized to JSON by WP_Script->localize and ends up being output like this. I simplified the structure a bit for the example.
{{{
}}}
This catches some interesting edge behavior in the browser. Notice the code comment is not actually closed correctly because it has {{{--!>}}} instead of {{{-->}}}. When testing that in html, I noticed that browsers seem to treat it as closing the comment and it doesn't break the page. It must be a common enough mistake.
If the field value is changed it have the proper {{{-->}}}, there are no issues. It also requires the {{{""],
}
}
}
}}}
== Recommendations
Escape JSON string ``
== Impact
* Attackers can inject any JavaScript code they like.
* Translation files can be provided from 3rd party(e.g. voluntary contributors), but hard to detect it's correct or not because they are written in foreign languages for the original authors.",Takahashi_Fumiki
Tickets Awaiting Review,49381,Add Javascript Documentation to privacy-tools.js,,Privacy,,normal,normal,Awaiting Review,enhancement,new,,2020-02-07T06:26:43Z,2020-02-07T06:26:43Z,"Stemming from a [https://core.trac.wordpress.org/ticket/44264#comment:18 comment] on #44264 the privacy-tools.js functions should be properly documented;
Javascript Documentation guidelines - https://make.wordpress.org/core/handbook/best-practices/inline-documentation-standards/javascript/#functions",garrett-eclipse
Tickets Awaiting Review,48977,Add a new test case for E2E test,,Build/Test Tools,,normal,normal,Awaiting Review,enhancement,new,,2019-12-15T05:30:44Z,2021-03-08T05:56:53Z,"Now the E2E test has only one case to test WordPress.
So we can add a new test case
** Test case
WordPress has two default content.
- Post ""Hello world"", post_id=1
- Page: ""Sample Page"", post_id=2
So we can test to these page are these page exists.
** Expect
- localhost?p=1 -> should return HTTP200
- localhost?p=2 -> should return HTTP200
- localhost?p=404 -> should return HTTP404",hideokamoto
Tickets Awaiting Review,47518,Add an explanatory message to the Revisions screen for locked posts,adamsilverstein,Revisions,,normal,normal,Awaiting Review,enhancement,assigned,,2019-06-10T15:30:43Z,2021-04-30T17:44:27Z,"It's possible for a user to navigate to the revisions screen for a post that's locked due to another user editing it, and not be able to restore any revisions due to the fact that the post is locked. In this situation no message is shown on the Revisions screen that explains why the `Restore This Revision` button is disabled.
Under normal operating procedure it's not easy to get to the Revisions screen for a locked post, but it is possible. A workflow related plugin, audit trail, or revisions list can make it possible to navigate directly to a revision without going via the otherwise locked editing screen.
1. User A navigates to the revisions screen for a non-locked post.
2. User B visits the editing screen for the post.
3. User A clicks `Return to editor` on the revisions screen.
4. User A chooses not to take over, and clicks `Go back`.
User A is now shown the revisions screen for a locked post and the `Restore This Revision` button is disabled for all revisions but with no explanatory information.",johnbillion
Tickets Awaiting Review,60345,Add duplicate checking for uploaded attachments,,Media,,normal,normal,Awaiting Review,enhancement,new,,2024-01-25T16:39:34Z,2024-01-25T16:39:34Z,"It can be very difficult to tell whether you've already added a given document or image to your media library if it's no longer in recent items. The lack of sorting or filtering makes specific difficult to locate.
Based on a [https://wordpress.slack.com/archives/C02SX62S6/p1706115251959409 conversation on duplicate detection in #core-media], we think that a starting point for this is to hash the meta data for an attachment at the time of upload and store that as attachment meta.
We could then check for that hash value before uploading a new document, and prompt the user to use the old attachment if it already exists.
The specific meta data would probably need to vary depending on the type of attachment.",joedolson
Tickets Awaiting Review,48270,Add space before first parentheses of if condition for JS consistency,,Administration,5.3,normal,minor,Awaiting Review,enhancement,new,has-patch,2019-10-10T09:02:29Z,2019-10-12T01:47:15Z,,mehidi258
Tickets Awaiting Review,49378,Add warning banner about no-js in wp-admin,,Administration,,normal,normal,Awaiting Review,enhancement,new,,2020-02-06T17:44:40Z,2020-02-07T01:59:52Z,"WordPress is becoming more and more depending on Javascript.
Javascript may be unavailable for various reasons:
- JS blocked in browser, either in general or for the current domain
- If the site is accessed over https while site URL is set to http, then JS objects may be blocked due to mix content rules.
If/when JS is unavailable, weird errors may occur in the admin panel, and the error texts may not immediately hint about the real reason. See #43900 for instance.
Obviously, the block editor is totally depending on JS, and it's already got a warning banner on it own ( #45453 ).
But I think it by now would be good to add a similar warning banner at the top of the wp-admin page:
Please note that Javascript seems to be unavailable. You may have it blocked or you may be mixing access via https and http. This may lead to unexpected errors.
So I suggest that we
",tobifjellner
Tickets Awaiting Review,53057,Added AJAX_DEBUG Constant for better ajax debugging,,General,,normal,normal,Awaiting Review,enhancement,new,has-patch,2021-04-19T06:45:00Z,2021-04-23T15:09:16Z,"AJAX_DEBUG = true will added action as url parameter debug=AJAX_ACTION. This will help developers to filter out the ajax requests from Browser Developer Tools Network tab, without having to click every ajax request to check what it is for.
Its been bothering me a lot and i think it bothered lot or other developers too. for every ajax call I have to click on each request ( in case there are multiple network request listed ) and have to check the request data or the request parameters to figure out which is my request.
This will help developers to just use search filter from network tab for filtering out their own request or any other request he/she want to check.
",parroty
Tickets Awaiting Review,54778,Adding Filters in UI (Plugins),,Plugins,5.8.3,normal,normal,Awaiting Review,enhancement,new,,2022-01-10T10:50:03Z,2023-05-20T06:47:16Z,"**Problem:**
Searching for any particular plugins shows the related plugins based on the keywords, out of which some old and unmaintained plugins also appear in the results which might be a vulnerability issue for their users.
**Possible Solution:**
Adding Filters to categorize the results for searchers query:
1. Latest to Oldest
2. Oldest to Latest
3. Most Downloads
4. Least Downloads
5. Highest Rated
6. Lowest Rated
**Exception:**
Adding the filters, rather than completely changing the way the results appear (such as: showing the most updated results first, etc) would be more useful, and it would be more fair for all publishers/plugin-maintainers.
**Possible Improvements:**
Reducing the risk of downloading incompatible old, untrusted, unmaintained plugins leading to vulnerability or other risks in website (business :D).",ritvikux
Tickets Awaiting Review,50441,Allow CORS for RSS feed,,Feeds,,normal,normal,Awaiting Review,enhancement,new,,2020-06-20T18:22:19Z,2021-10-08T06:59:23Z,"I'm developing an in-browser RSS reader and want to get an RSS feed from my blog on WP.com but browser (both Chrome and FF) shows me the error:
{{{
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://wordpress.com/blog/feed/. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing).
}}}
Here is a small example to reproduce:
{{{
}}}
This is quite popular thing that a lot of peoples tries to do:
https://www.google.com/search?q=wordpress+feed+cors
That's one of the main reasons why most browser JS RSS readers requires to use a dedicated proxy server that will make a server to sever call to retrieve the RSS:
* https://github.com/sdepold/jquery-rss proxies RSS fetch via Feedr.
* https://github.com/enginkizil/FeedEk proxies RSS fetch via Feed API
* https://github.com/rbren/rss-parser uses https://cors-anywhere.herokuapp.com
The fix is easy:
{{{
add_action( 'pre_get_posts', 'add_header_origin' );
function add_header_origin() {
if (is_feed()){
header( 'Access-Control-Allow-Origin: *' );
}
}
}}}
But I wan't the fix to be added into WP trunk because my reader will mostly consume RSS from wordpress.com or many other WP blogs.
It should be fine to allow CORS requests to feed. The only one problem is a security concern. Hacker can make a DDoS by pasting on some popular site an tag with src to WP feed and this will produce a big load to WP instance.
But here we can add a simple check: when browser requests an image it sends the header `Accept: image/webp,image/apng,image/*,*/*;q=0.8` while JS RSS headers can set the `Accept` header manually to `application/rss+xml`.
Actually the rss-parser already sends the `Accept: application/rss+xml`. So on the server side we can just check that client requested exactly the feed and only then try to generate it.
As far I see this is something really important (because already used workarounds) and it should be easy to implement and safe to enable by default. So I'll set Major severity.
",stokito
Tickets Awaiting Review,47962,Allow apiRequest to do requests on external WordPress sites,,REST API,5.3,normal,normal,Awaiting Review,enhancement,new,has-patch,2019-09-02T17:40:13Z,2019-09-02T21:09:12Z,"Hi,
It's not possible to use the `wp.apiRequest` function to do REST requests on external WordPress sites as it forces the addition of the `X-WP-Nonce` header from the site where the request was made which of course doesn't match with the one generated by the external WordPress site. I think it's a bit too bad :(
Here's a [https://gist.github.com/imath/00630617d731b51e4db4ef9f81752eb5 Gist] to test what I'm describing above on my personal site.
If you run the code, you'll get a cross domain issue:
`blocked by CORS policy: Request header field x-wp-nonce is not allowed by Access-Control-Allow-Headers in preflight response.`
Now if you run the code after applying the attached patch, you'll get 10 of my posts where I link to this site.
Is there something wrong about allowing these external requests ? Else I think it would be pretty useful.",imath
Tickets Awaiting Review,47447,Allow client-side storing of comment meta,,Comments,,normal,normal,Awaiting Review,enhancement,new,,2019-05-31T15:46:52Z,2019-05-31T15:46:52Z,"As a modern counterpart to #12431, I think it'd be nice if plugins could add comment meta from the client side as well.
An example use case would be [https://github.com/iandunn/compassionate-comments a plugin that identifies toxic comments, and then encourages the author to rephrase it to be more kind before it gets submitted].
It's currently possible by adding a `preprocess_comment` callback that examines `$_POST`, verifies and sanitizes the data, and then adds it to `$commentdata` before that gets passed to `wp_insert_comment()`. It could be much easier and standardized, though.
Ideally, I think a client-side script should be able to just append a hidden input field named `comment_meta[]` to the `.form-submit` element, and have it be automatically added via `wp_insert_comment()`, rather than being ignored by `wp_handle_comment_submission()`.
Since it's coming from the client side, the data can't be trusted. We need to verify that it was added by the enqueued script, and then sanitize it. Maybe there could be something similar to `register_post_meta()` with a `allow_in_form` boolean param, and a `sanitize_callback` param.",iandunn
Tickets Awaiting Review,49352,Allow get_proxy_item to be filtered/altered before a response is sent to the editor.,,Embeds,,normal,normal,Awaiting Review,enhancement,new,,2020-02-03T16:13:40Z,2020-02-03T16:13:40Z,"**tl;dr:** Add a filter in {{{\WP_oEmbed_Controller::get_proxy_item}}} so certain non-oembed sites can still be embeded using a custom handler from a plugin.
**Scenario:** I would like to create a generic oEmbed provider on my own site similar to iframely.com. So when a user posts a link in the editor that isn't a oembed provider, I would like to be able to filter the response from {{{\WP_oEmbed_Controller::get_proxy_item}}} and not having it reply with {{{return new WP_Error( 'oembed_invalid_url', get_status_header_desc( 404 ), array( 'status' => 404 ) );}}}. In my ideal case I could catch this and pipe the URL in question through my own proxy endpoint and create a custom oEmbed result from meta and open graph tags generated from the original HTML of the link to be embeded.
Currently it seems, that I can only replace the all embeds through a custom handler, similar to what iframely does: https://github.com/itteco/iframely-wordpress/blob/master/iframely/iframely.php#L19-L23
",neverything
Tickets Awaiting Review,51200,Consider a better way to deprecate JavaScript code,,Script Loader,,normal,normal,Awaiting Review,enhancement,new,,2020-08-31T20:56:32Z,2020-08-31T21:30:53Z,"Background: #51123
At the moment, we have some established functions for deprecating PHP functionality:
* `_deprecated_function()`
* `_deprecated_constructor()`
* `_deprecated_file()`
* `_deprecated_argument()`
* `_deprecated_hook()`
As well as some files to move deprecated functions to:
* `wp-admin/includes/deprecated.php`
* `wp-admin/includes/ms-deprecated.php`
* `wp-includes/deprecated.php`
* `wp-includes/ms-deprecated.php`
* `wp-includes/pluggable-deprecated.php`
We don't, however, have a similar way to deprecate JavaScript functionality, sometimes leading to more breakage than necessary when removing global objects or properties without backward compatibility considerations.
[48923] attempted to improve things a bit introducing `deprecatedProperty()`.
Some ideas previously suggested to further make sure we have a way to deprecate JavaScript code properly:
* Have a clear deprecation policy of when the affected code should be removed.
* Use the [https://developer.wordpress.org/block-editor/packages/packages-deprecated/ @wordpress/deprecated] package (suggested by @ocean90 in comment:33:ticket:51123).
* Create a `deprecated.js` file for the code to be moved to (suggested by @desrosj on Slack).",SergeyBiryukov
Tickets Awaiting Review,28988,Detect Time Zones automatically at installation,,Date/Time,,normal,normal,Awaiting Review,enhancement,new,dev-feedback,2014-07-22T19:19:50Z,2021-05-05T19:04:34Z,"Currently, upon installing WordPress, one of the steps I always take is to go to Settings > General > Timezone to manually set my time zone. I've been using Wordpress for eight years, so I know to do it and how to do it, and it's just a minor inconvenience. However, I have seen people new to this platform be confused and/or not know how to change this.
Is it technologically possible to use a geolocation service to query the IP address of the computer installing Wordpress and automatically set that service's best guess as to time zone, perhaps during the setup process?
I would envision the UI option remaining in settings, in case, for example, a developer in one time zone builds a site for a client in another. But automatic detection would be perfect for the average new user. It would be one more element that just works out of the box for those who aren't particularly tech savvy.
I did some searching in Trac to see if I could find a similar ticket and couldn't find any.",danielmount
Tickets Awaiting Review,57421,Editor: add new parameter to hook when enqueuing block assets,,Editor,,normal,normal,Awaiting Review,enhancement,new,has-patch,2023-01-05T10:12:09Z,2023-01-10T18:16:16Z,"This trac ticket is part 1 of a larger discussion spanning multiple issues, about the **potential issues plugin authors may face when developing blocks that rely on the @wordpress/editor dependency**.
- This trac ticket is **part 1**: it suggests an option to make conditional asset enqueuing easier in the different block editors.
- In **part 2**, I would like to suggest an option to declare support for specific editors at block registration. Discussion about this is happening in [https://github.com/WordPress/gutenberg/issues/46900 this Gutenberg issue].
----
When enqueuing assets for a block registered in a plugin, one can rely on `block.json`, or hook into the `enqueue_block_editor_assets` hook to enqueue necessary scripts and styles in the block editor.
This works well, but offers some challenges with some specific blocks. For instance, your block may rely on the `@wordpress/editor` dependency to handle some of its functionality. That dependency is available in the post editor, but cannot be used in the widget editor or the site editor. See #53569 and [https://github.com/WordPress/gutenberg/issues/33203 33203-gutenberg] for more information on this topic.
In this scenario, one may want to enqueue the block's scripts (and its `wp-editor` dependency) **only in the post editor**.
The `enqueue_block_editor_assets` hook doesn't currently offer this flexibility. As a result, folks wanting to do that must add a check before they enqueue. Something like this for someone not wanting to load in the widget editor for example.
{{{#!php
tag incase JS borks out:
{{{
}}}
This could possibly be an extension of wp_enqueue_style by adding another parameter:
{{{#!php
}}}
",mihaidumitrascu
Tickets Awaiting Review,27127,Improve plugin search on installed plugins page,,Administration,3.8,normal,normal,Awaiting Review,enhancement,new,,2014-02-14T17:16:53Z,2023-04-12T16:18:45Z,"If you have lots of plugins installed trying to find one in the installed plugin page is not quick. The search box is quite slow ( requires a page refresh ).
Adding some JavaScript that transforms the current search box into a quickfind box would help solve this problem.
As the user types a keyword the JavaScript searched across the displayed text for the plugin, only displaying the plugins that contain that keyword.",enej
Tickets Awaiting Review,51159,Let's expand our context specific escaping methods for wp_json_encode().,,Security,,normal,normal,Awaiting Review,enhancement,new,,2020-08-27T18:54:00Z,2020-08-27T18:59:19Z," This document is largely sourced from a document written by @mdawaffe. Full credit to him for the research and thoughts put forward here. What I'd like to do is move this toward some actionable functions and developer best practices moving forward.
`wp_json_encode()` is a handy helper for turning PHP into Javascript, and it is widely used in different places to serialize different variables. Imagine this hypothetical scenario:
{{{
BAD:
}}}
`json_encode()` serializes data into a string that can be used as a JavaScript literal* (e.g., `null`, `true`, `false`, `1234` (numbers), `""strings""`, `[ ""arrays"" ]`, and `{ ""objects"": ""oh my""}`.)
JSON serialization, though, has nothing to do with HTML, and so does not treat characters that are special in HTML (`<`, `>`, `&`, `'`, `""`) in any special way: essentially, the code above is as bad as `echo $_GET['foo']`.
Securing the above code is as simple as it always is in WordPress. We’re echoing data inside an HTML text node, so we use `esc_html()`:
{{{
OK:
}}}
Unfortunately, while secure 😀, this code is not actually correct ☹️. For historical reasons, `esc_html()` will not touch HTML entities (`&`):
|| Input || `htmlspecialchars()` || `esc_html()` ||
|| `&` || `&` 😀 || `&` 😀 ||
|| `&` || `&` 😀 || `&` ☹️ ||
In the example above, if there are any HTML entities in $_GET, they will be echoed verbatim to the page, which means they will appear unescaped to the page’s visitor.
=== In an HTML Text Node ===
To faithfully represent the contents of a JSON blob in an HTML text node, the following code must be used:
{{{
GOOD:
`&`
); ?>
}}}
This code is only appropriate for outputting JSON in HTML text nodes. There are several other contexts where we would like to output JSON, and each of those different contexts requires different treatment.
=== As an HTML Attribute Node ===
Though the HTML5 `.dataset` API only accepts string values for `data-*` attributes, jQuery will automatically parse `data-*` attribute values that are JSON serializations. So, when using jQuery, the following pattern is often handy:
{{{
BAD:
}}}
Handy but, as we should know by now, insecure 😀. We need to HTML-escape the output.
Like `esc_html()`, `esc_attr()` also leaves HTML entities untouched, so, again, the solution is to “manually” use `_wp_specialchars()`:
{{{
GOOD: