WordPress.org

Make WordPress Core

Opened 6 years ago

Closed 6 years ago

Last modified 6 years ago

#5484 closed defect (bug) (fixed)

Escape POP3 error messages

Reported by: xknown Owned by:
Milestone: 2.5 Priority: normal
Severity: normal Version: 2.3.1
Component: Security Keywords:
Focuses: Cc:

Description

All POP3 error messages in wp-mail.php should be properly escaped because it can be used to perform XSS attacks.

Attachments (1)

wp-mail.diff (969 bytes) - added by xknown 6 years ago.

Download all attachments as: .zip

Change History (3)

xknown6 years ago

comment:1 ryan6 years ago

  • Resolution set to fixed
  • Status changed from new to closed

(In [6404]) Escape pop3 error messages. Props xknown. fixes #5484

comment:2 ryan6 years ago

(In [6487]) Escape pop3 error messages. Props xknown. fixes #5484 for 2.3

Note: See TracTickets for help on using tickets.