Refactored filters to avoid potential XSS attacks
|Reported by:||sambauers||Owned by:||ryan|
|Component:||Security||Keywords:||has-patch, needs-testing, XSS|
Attached patch introduces new and refactored functions for filtering input. They mostly work as additional defence against invalid UTF8 XSS attacks in IE6.
New wp_specialchars() is optimised for PHP 5.2.3+
Change History (24)
Note: See TracTickets for help on using tickets.