Pascal Birchler
b42c9261b6
Upgrade/Install: Sanitize file name in `File_Upload_Upgrader`.
...
Merge of [38524] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@38533
git-svn-id: http://core.svn.wordpress.org/branches/3.8@38474 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-09-06 18:04:12 +00:00
Boone Gorges
06c510f23b
Bump 3.8 branch to 3.8.15.
...
Built from https://develop.svn.wordpress.org/branches/3.8@37835
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37800 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 16:49:09 +00:00
Joe McGill
f65775fd46
Media: Improve handling of extensionless filenames.
...
Merge of [37756] to the 3.8 branch.
See #37111 .
Built from https://develop.svn.wordpress.org/branches/3.8@37824
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37789 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 15:00:19 +00:00
Nikolay Bachiyski
d0ad7b828e
Admin: escape URL-encoded permalinks
...
Merge of [37801] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37821
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37786 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 14:59:10 +00:00
Rachel Baker
3b59453453
Revisions: Change the capability needed to view revision diffs to `edit_post`.
...
Merge of [37779] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37805
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37770 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 14:49:36 +00:00
Nikolay Bachiyski
dea46f4d1c
Admin: Escape attachment name in case it contains special characters
...
Merge of [37774] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37794
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37759 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 14:29:11 +00:00
Boone Gorges
7f00fb5298
Taxonomy: More specific cap check when processing category data on post save.
...
Ports [37691] to the 3.8 branch.
Props dlh.
Fixes #36379 .
Built from https://develop.svn.wordpress.org/branches/3.8@37787
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37752 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 14:25:33 +00:00
Dominik Schilling
40ad99fab7
Customize: Make sure that preview and return URLs are URLs.
...
Merge of [37527] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37778
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37743 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 14:21:59 +00:00
Jeremy Felt
bea4197fb1
Admin: Allow for the consistent filtering of `auth_redirect_scheme`
...
Merge of [37651] to the 3.8 branch.
See #37047 .
Built from https://develop.svn.wordpress.org/branches/3.8@37765
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37730 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-06-21 14:14:01 +00:00
Dominik Schilling
00de4f6c3c
Bump 3.8 branch to 3.8.14.
...
Built from https://develop.svn.wordpress.org/branches/3.8@37391
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37357 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-05-06 18:16:09 +00:00
Nikolay Bachiyski
c3120b8be8
External Libraries: Disable Flash backend for Plupload
...
Built from https://develop.svn.wordpress.org/branches/3.8@37373
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37339 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-05-06 17:54:10 +00:00
Nikolay Bachiyski
27290d9a33
Taxonomies: make sure taxonomy functions work correctly with taxonomy names with special characters
...
The codex says that taxonomy names "should only contain lowercase letters and the underscore character", but that's not enforced. It's too late to enforce it, since some plugins haven't been following it and the official phpdoc doesn't mention this restriction.
Merge of [37133] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37141
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37108 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-03-30 17:41:10 +00:00
Jeremy Felt
41e2e17277
Multisite: Improve escaping in network settings.
...
Merge of [37124] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37131
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37098 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-03-30 16:07:10 +00:00
Dominik Schilling
6a6a02e76e
HTTP: Improve detection of valid IP addresses.
...
Merge of [37115] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37122
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37089 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-03-30 15:53:10 +00:00
Dominik Schilling
6ebee04c9a
Multisite: Validate new email address confirmations.
...
Merge of [37103] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37110
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37077 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-03-30 14:51:24 +00:00
Nikolay Bachiyski
33c549723e
Snoopy: use escapeshellarg instead of escapeshellcmd
...
We are escaping arguments, not commands, so we'd better use the semantically correct function, even though they are similar.
Merges [37094] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@37101
git-svn-id: http://core.svn.wordpress.org/branches/3.8@37068 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-03-30 14:14:10 +00:00
Dominik Schilling
51f81f7262
Bump 3.8 branch to 3.8.13.
...
Built from https://develop.svn.wordpress.org/branches/3.8@36461
git-svn-id: http://core.svn.wordpress.org/branches/3.8@36428 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-02-02 17:30:23 +00:00
Dominik Schilling
00190002da
Better validation of the URL used in HTTP redirects.
...
Merges [36444] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@36453
git-svn-id: http://core.svn.wordpress.org/branches/3.8@36420 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-02-02 17:01:28 +00:00
Dominik Schilling
cd14a4ddd0
HTTP: `0.1.2.3` is not a valid IP.
...
Merges [36435] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@36442
git-svn-id: http://core.svn.wordpress.org/branches/3.8@36409 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-02-02 13:06:11 +00:00
Dominik Schilling
d1b04bbaff
Bump 3.8 branch to 3.8.12.
...
Built from https://develop.svn.wordpress.org/branches/3.8@36202
git-svn-id: http://core.svn.wordpress.org/branches/3.8@36169 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-01-06 18:51:23 +00:00
Aaron Jorbin
e8765983bf
Theme: Escape error messages
...
[36185] for 3.8 branch
Built from https://develop.svn.wordpress.org/branches/3.8@36192
git-svn-id: http://core.svn.wordpress.org/branches/3.8@36159 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-01-06 17:29:10 +00:00
Dion Hulse
25f17b93f4
Background Updates: Remove the 7am/7pm background update check.
...
This changeset is a more basic version of [36180], clearing the extra now redundant schedule.
As the functionality for this was introduced in 3.9, [28129] has been backported to 3.7/3.8, allowing the API TTL to be respected by those versions.
See #27772 .
Fixes #35323 .
Built from https://develop.svn.wordpress.org/trunk@36184
git-svn-id: http://core.svn.wordpress.org/branches/3.8@36151 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2016-01-06 13:24:33 +00:00
Dion Hulse
e1cc3b4567
Update Akismet externals
...
git-svn-id: http://core.svn.wordpress.org/branches/3.8@35107 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-10-13 17:19:01 +00:00
Dominik Schilling
22bac7afad
Finish bumping the 3.8 branch to 3.8.11.
...
Built from https://develop.svn.wordpress.org/branches/3.8@34195
git-svn-id: http://core.svn.wordpress.org/branches/3.8@34162 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-15 14:52:44 +00:00
Helen Hou-Sandí
772523fac7
Bump 3.8 branch to 3.8.11.
...
Built from https://develop.svn.wordpress.org/branches/3.8@34186
git-svn-id: http://core.svn.wordpress.org/branches/3.8@34154 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-15 14:29:57 +00:00
Dominik Schilling
16ea036050
XMLRPC: Don't allow private posts to be sticky.
...
Merge of [33325], [33612], and [34135] to the 3.8 branch.
See #20662 .
Built from https://develop.svn.wordpress.org/branches/3.8@34156
git-svn-id: http://core.svn.wordpress.org/branches/3.8@34124 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-14 23:03:09 +00:00
Nikolay Bachiyski
f062575157
Shortcodes: don't allow unclosed HTML elements in attributes
...
Merges [34134] for 3.8 branch
Built from https://develop.svn.wordpress.org/branches/3.8@34149
git-svn-id: http://core.svn.wordpress.org/branches/3.8@34117 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-14 22:49:39 +00:00
Nikolay Bachiyski
0c6eeb9ad1
List tables: escape user e-mails
...
Merges [34133] for 3.8 branch
Built from https://develop.svn.wordpress.org/branches/3.8@34142
git-svn-id: http://core.svn.wordpress.org/branches/3.8@34110 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-14 22:45:11 +00:00
Gary Pendergast
9699996c49
WPDB: `get_table_from_query()` didn't find table names with hyphens in them.
...
Merge of [33718] to the 3.8 branch.
Props dustinbolton, pento.
See #33470 .
Built from https://develop.svn.wordpress.org/branches/3.8@33996
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33965 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-10 07:14:10 +00:00
Gary Pendergast
22068b9926
Capabilities: Fall back to the `edit_posts` capability for orphaned comments.
...
Merge of the `capabilities.php` part of [33614] to the 3.8 branch.
Props pento, dd32.
See #33154 .
Built from https://develop.svn.wordpress.org/branches/3.8@33976
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33945 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-09 06:22:10 +00:00
Dominik Schilling
09a38682f8
Bump 3.8 branch to version 3.8.10.
...
Built from https://develop.svn.wordpress.org/branches/3.8@33576
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33543 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-08-04 11:52:44 +00:00
Dion Hulse
32274112c6
Fix `do_shortcode('<[shortcode]')` edge case.
...
Props miqrogroove.
Merges [33499] to the 3.8 branch.
See #33116 .
Built from https://develop.svn.wordpress.org/branches/3.8@33567
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33534 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-08-04 07:18:54 +00:00
Dominik Schilling
0128210d88
Comments: IDs are integers.
...
Merge of [33555] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@33560
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33527 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-08-04 05:00:15 +00:00
Dominik Schilling
6d3a23c410
Themes: Fix some broken links in the legacy theme preview.
...
Merge of [33549] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@33553
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33520 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-08-04 04:58:04 +00:00
Dominik Schilling
ebe4779cea
Heartbeat: Ensure post locks are released.
...
Merge of [33542] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@33547
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33514 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-08-04 04:56:15 +00:00
Dominik Schilling
7641da2980
Nav menus: Consistent titles in widgets.
...
Merge of [33529] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@33533
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33500 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-08-03 20:58:59 +00:00
Andrew Ozz
53f980d4be
Backport r33469 and r33470 to 3.8.
...
See #33106 .
Built from https://develop.svn.wordpress.org/branches/3.8@33524
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33491 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-07-31 01:45:23 +00:00
Gary Pendergast
b796308091
Bump 3.9 branch to version 3.8.9.
...
Built from https://develop.svn.wordpress.org/branches/3.8@33399
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33367 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-07-23 11:09:09 +00:00
Gary Pendergast
fbc90de16c
Shortcodes: Improve the reliablity of shortcodes inside HTML tags.
...
Merge of [33359] to the 3.8 branch.
Props miqrogroove.
See #15694 .
Built from https://develop.svn.wordpress.org/branches/3.8@33388
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33356 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-07-23 05:09:09 +00:00
Gary Pendergast
9a0402d634
Capabilities: When creating an auto-draft, ensure that the current user still has permission to do so.
...
Merge of [33357] to the 3.8 branch.
Built from https://develop.svn.wordpress.org/branches/3.8@33378
git-svn-id: http://core.svn.wordpress.org/branches/3.8@33349 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-07-23 04:19:10 +00:00
Dominik Schilling
c56e499391
3.8.8 version bumps.
...
Built from https://develop.svn.wordpress.org/branches/3.8@32438
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32408 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 23:34:10 +00:00
Michael Adams
74417f8f5c
Upgrade: `$wpdb->get_col_length()` sanity check: bail on unexpected return value.
...
Merges [32429] for the 3.8 branch.
See #32165 .
Built from https://develop.svn.wordpress.org/branches/3.8@32434
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32404 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 23:14:25 +00:00
Michael Adams
d342b4c478
Upgrade: Ensure unintelligible DB schemas don't result in content loss.
...
Merge of [32417] to the 3.8 branch.
See #32165 .
Props ocean90.
Built from https://develop.svn.wordpress.org/branches/3.8@32422
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32392 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 21:53:25 +00:00
John Blackbourn
d4c9ce4bda
WPDB: Allow queries to reference tables in the dbname.tablename format, and allow table names to contain any valid character, rather than just ASCII.
...
Merge of [32368] to the 3.8 branch.
Props pento, willstedt for the initial patch.
See #32090 .
Built from https://develop.svn.wordpress.org/branches/3.8@32415
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32385 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 21:13:11 +00:00
Aaron Jorbin
84c27f1b42
When upgrading WordPress remove genericons example.html files
...
[32385] for 3.8 branch
Props @dd32, @boonebgorges, @johnjamesjacoby, @drewapicture, @jorbin
Built from https://develop.svn.wordpress.org/branches/3.8@32410
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32380 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 20:40:10 +00:00
Dominik Schilling
1695bed869
WPDB: When sanity checking query character sets, there's no need to check queries that don't return user data.
...
Merges [32374] to the 3.8 branch.
props pento.
see #32104 .
Built from https://develop.svn.wordpress.org/branches/3.8@32406
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32376 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 20:07:10 +00:00
Helen Hou-Sandí
75b1ce17ad
The UTF-8 regex can occasionally fail on very low memory machines. Reduce the amount of memory it uses.
...
Merges [32375] to the 3.8 branch.
props pento.
See #32204 .
Built from https://develop.svn.wordpress.org/branches/3.8@32399
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32369 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 19:44:11 +00:00
Michael Adams
b9558b5c68
WPDB: When checking that a string can be sent to MySQL, we shouldn't use `mb_convert_encoding()`, as it behaves differently to MySQL's character encoding conversion.
...
Merge of [32364] to the 3.8 branch.
Props mdawaffe, pento, nbachiyski, jorbin, johnjamesjacoby, jeremyfelt.
See #32165 .
Built from https://develop.svn.wordpress.org/branches/3.8@32390
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32360 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-05-06 19:15:10 +00:00
Michael Adams
b6bdb208dd
3.8:
...
- WPDB: Sanity check that any strings being stored in the DB are not too long to store correctly.
- When upgrading, remove any suspicious comments.
Built from https://develop.svn.wordpress.org/branches/3.8@32317
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32288 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-04-27 18:34:10 +00:00
Gary Pendergast
d6c009f72c
3.8 branch is now 3.8.8.
...
Built from https://develop.svn.wordpress.org/branches/3.8@32304
git-svn-id: http://core.svn.wordpress.org/branches/3.8@32275 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-04-27 14:12:24 +00:00