#54278 closed defect (bug) (fixed)
Properly escape form action url
Reported by: | sabbirshouvo | Owned by: | SergeyBiryukov |
---|---|---|---|
Milestone: | 5.9 | Priority: | normal |
Severity: | normal | Version: | |
Component: | Upgrade/Install | Keywords: | has-patch commit |
Focuses: | coding-standards | Cc: |
Description
In wp-admin/update-core.php
there are 4 forms with action. Thress of them has form action with properly escaped URL. One of them is missing URL escaping while the value of action for all of them is the same.
Attachments (1)
Change History (5)
#2
@
3 years ago
- Keywords commit added
- Milestone changed from Awaiting Review to 5.9
- Version trunk deleted
#3
@
3 years ago
- Owner set to SergeyBiryukov
- Resolution set to fixed
- Status changed from new to closed
In 51914:
This ticket was mentioned in Slack in #core by sergey. View the logs.
3 years ago
Note: See
TracTickets for help on using
tickets.
Hi there, thanks for the ticket and patch!
The patch looks good to me and ready to marge.
Moving to milestone
5.9
and marking forcommit
.