WordPress.org

Make WordPress Core

Opened 4 years ago

Closed 4 years ago

Last modified 4 years ago

#16042 closed defect (bug) (wontfix)

KSES related XSS Security issue for 2.9

Reported by: hakre Owned by:
Milestone: Priority: normal
Severity: normal Version: 2.9.2
Component: General Keywords: has-patch
Focuses: Cc:

Description

As the issue is rated as seriously and I could reproduce it on my 2.9.2 testbed and 3.1 is not released yet I backported the kses changes for 2.9.2.

Attachments (1)

16042-full.patch (17.4 KB) - added by hakre 4 years ago.
Patch against branch 2.9

Download all attachments as: .zip

Change History (5)

hakre4 years ago

Patch against branch 2.9

comment:1 hakre4 years ago

This patch includes the requirements by Ulf Härnhammar as in #16039

comment:2 follow-up: westi4 years ago

  • Resolution set to wontfix
  • Status changed from new to closed

2.9 branch is no longer maintained since we went to beta for 3.1

comment:3 ocean904 years ago

  • Milestone Awaiting Review deleted

comment:4 in reply to: ↑ 2 hakre4 years ago

Replying to westi:

2.9 branch is no longer maintained since we went to beta for 3.1

Can such a kind of rule be seen anywhere? Would be great to know.

Note: See TracTickets for help on using tickets.