sergiotarxz/Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Pass comments through kses. Props tsimmons. fixes #2130 #2167

Browse Source 
git-svn-id: https://develop.svn.wordpress.org/trunk@3417 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Ryan Boren 2006-01-09 23:49:56 +00:00
parent 82f037674e
commit 06532a3304
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
wp-includes/kses.php
View File

@ -77,7 +77,7 @@ function wp_kses_split($string, $allowed_html, $allowed_protocols)
# matches stray ">" characters.
###############################################################################
{
return preg_replace('%(<'.# EITHER: <
return preg_replace('%(<!--.*?-->)|(<'.# EITHER: <
'[^>]*'.# things that aren't >
'(>|$)'.# > or end of string
'|>)%e', # OR: just a >
@ -98,6 +98,10 @@ function wp_kses_split2($string, $allowed_html, $allowed_protocols)
return '&gt;';
# It matched a ">" character
if (preg_match('%^<!--.*-->$%', $string))
return $string;
# Allow HTML comments
if (!preg_match('%^<\s*(/\s*)?([a-zA-Z0-9]+)([^>]*)>?$%', $string, $matches))
return '';
# It's seriously malformed