Opened 4 months ago
Last modified 4 months ago
#58900 new defect (bug)
Escaping: Output String did not run through a proper escaping function
| Reported by: |
|
Owned by: | |
|---|---|---|---|
| Milestone: | Awaiting Review | Priority: | normal |
| Severity: | normal | Version: | 3.4 |
| Component: | Security | Keywords: | has-patch |
| Focuses: | coding-standards | Cc: |
Description
In class-wp-customize-control.php on line 642 'New page title' did not run through any escaping function. I think esc_html_e() should be applied.
Change History (1)
This ticket was mentioned in PR #4898 on WordPress/wordpress-develop by @armondal.
4 months ago
#1
- Keywords has-patch added
Note: See
TracTickets for help on using
tickets.
Applying proper escaping function to the output strings
Trac ticket: