Make WordPress Core

Opened 4 months ago

Last modified 4 months ago

#58900 new defect (bug)

Escaping: Output String did not run through a proper escaping function

Reported by: armondal's profile armondal Owned by:
Milestone: Awaiting Review Priority: normal
Severity: normal Version: 3.4
Component: Security Keywords: has-patch
Focuses: coding-standards Cc:


In class-wp-customize-control.php on line 642 'New page title' did not run through any escaping function. I think esc_html_e() should be applied.

Change History (1)

This ticket was mentioned in PR #4898 on WordPress/wordpress-develop by @armondal.

4 months ago

  • Keywords has-patch added

Applying proper escaping function to the output strings

Trac ticket:

Note: See TracTickets for help on using tickets.