mirror of
https://github.com/WordPress/WordPress.git
synced 2024-12-23 09:37:42 +01:00
Encode brackets in the load-scripts.php URL, as these are considered unsafe characters and can be misunderstood. (See RFC 1738.) In particular, a "security" rewrite rule from a plugin blocked URLs with unencoded brackets. fixes #22899 for trunk.
git-svn-id: http://core.svn.wordpress.org/trunk@23201 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
0fd3e567d7
commit
a7000ad7fa
@ -703,7 +703,7 @@ function _print_scripts() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
$concat = str_split( $concat, 128 );
|
$concat = str_split( $concat, 128 );
|
||||||
$concat = 'load[]=' . implode( '&load[]=', $concat );
|
$concat = 'load%5B%5D=' . implode( '&load%5B%5D=', $concat );
|
||||||
|
|
||||||
$src = $wp_scripts->base_url . "/wp-admin/load-scripts.php?c={$zip}&" . $concat . '&ver=' . $wp_scripts->default_version;
|
$src = $wp_scripts->base_url . "/wp-admin/load-scripts.php?c={$zip}&" . $concat . '&ver=' . $wp_scripts->default_version;
|
||||||
echo "<script type='text/javascript' src='" . esc_attr($src) . "'></script>\n";
|
echo "<script type='text/javascript' src='" . esc_attr($src) . "'></script>\n";
|
||||||
|
Loading…
Reference in New Issue
Block a user