WordPress/wp-includes
Peter Wilson 59ca490c66 XML-RPC: Fix length validation of anonymous commenter's email address.
Fix the first step of validating an anonymous commenters in which the length is checked prior to running regular expressions.

Follow up to [47808].
Merges [49271] to the 5.5 branch.
Fixes #51595.


Built from https://develop.svn.wordpress.org/branches/5.5@49273


git-svn-id: http://core.svn.wordpress.org/branches/5.5@49035 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2020-10-22 02:47:07 +00:00
..
assets Editor: update packages. 2020-08-27 18:00:38 +00:00
block-patterns Editor: Remove some hardcoded text color values from patterns that have body text with no specific background color. 2020-08-26 13:36:04 +00:00
blocks Block Editor: Updated WordPress Packages for 5.5 beta 4 2020-07-27 20:10:36 +00:00
certificates HTTP: Update the Root Certificate bundle. 2020-08-01 14:13:03 +00:00
css Editor: update packages. 2020-08-27 18:00:38 +00:00
customize Themes: Include theme name in available update messages, for better accessibility and consistency with other similar messages. 2020-07-28 11:31:01 +00:00
fonts Administration: Reverse the arrow direction for database import/export icons. 2020-07-17 17:11:03 +00:00
ID3 External Libraries: Update getID3 to version 1.9.20. 2020-07-02 15:48:04 +00:00
images Customize: Move the WordPress logo with a white background to the wp-includes directory. 2020-05-21 09:10:12 +00:00
IXR XML-RPC: Explicitly unset the reference to the parser resource after calling xml_parser_free() to avoid memory leaks in PHP 7.0.0 or higher. 2020-07-05 15:22:01 +00:00
js Comments: Hide the link to the initial parent comment in the reply heading when replying to another comment. 2020-10-18 17:11:06 +00:00
PHPMailer General: Continuing to work towards a passing PHP Compatibility scan. 2020-06-15 14:56:07 +00:00
pomo Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
random_compat
Requests General: Remove “whitelist” and “blacklist” in favor of more clear and inclusive language. 2020-06-22 17:26:13 +00:00
rest-api REST API: In WP_REST_Block_Directory_Controller::get_items(), make sure the blocks data for a plugin is not empty before proceeding. 2020-08-24 10:35:07 +00:00
SimplePie External Libraries: Update the SimplePie library to the latest version (1.5.5). 2020-05-01 14:26:07 +00:00
sitemaps Docs: Various formatting improvements to inline docblocks. 2020-07-23 00:52:05 +00:00
sodium_compat General: Remove “whitelist” and “blacklist” in favor of more clear and inclusive language. 2020-06-22 17:26:13 +00:00
Text General: Continuing to work towards a passing PHP Compatibility scan. 2020-06-15 14:56:07 +00:00
theme-compat Bundled Themes: Use HTTPS for XHTML Friends Network URL. 2020-07-03 23:42:01 +00:00
widgets Docs: Various formatting improvements to inline docblocks. 2020-07-23 00:52:05 +00:00
admin-bar.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
atomlib.php XML-RPC: Explicitly unset the reference to the parser resource after calling xml_parser_free() to avoid memory leaks in PHP 7.0.0 or higher. 2020-07-05 15:22:01 +00:00
author-template.php Docs: Further corrections and improvements to various inline docblocks. 2020-07-23 07:39:02 +00:00
block-patterns.php Block Editor: Update the Core Block Patterns. 2020-07-27 15:14:04 +00:00
blocks.php Docs: Add a note that the $args parameter of register_block_type() accepts any public property of WP_Block_Type. 2020-07-26 22:17:01 +00:00
bookmark-template.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
bookmark.php Docs: Miscellaneous DocBlock corrections. 2020-07-23 21:55:04 +00:00
cache-compat.php Docs: Add missing documentation for the $group parameter of WP_Object_Cache::get_multiple(). 2020-06-10 09:57:09 +00:00
cache.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
canonical.php Sitemaps: Prevent incorrect redirection of paged sitemap requests. 2020-08-27 01:37:03 +00:00
capabilities.php Taxonomy: Rename the default_taxonomy_$taxonomy option key to default_term_$taxonomy. 2020-07-28 15:42:07 +00:00
category-template.php Docs: Improve documentation for various category functions. 2020-07-26 17:18:04 +00:00
category.php Docs: Miscellaneous DocBlock corrections. 2020-07-23 21:55:04 +00:00
class-feed.php
class-http.php Docs: Improve documentation for WP_Http::processHeaders(). 2020-07-26 22:45:03 +00:00
class-IXR.php
class-json.php
class-oembed.php
class-phpass.php
class-phpmailer.php Mail: Make sure the PHPMailer class is only required once if a plugin requires wp-includes/class-phpmailer.php directly. 2020-07-21 12:58:02 +00:00
class-pop3.php General: More PHP compatibility adjustments. 2020-05-01 20:12:06 +00:00
class-requests.php General: Continuing to work towards a passing PHP Compatibility scan. 2020-06-03 17:40:12 +00:00
class-simplepie.php General: Continuing to work towards a passing PHP Compatibility scan. 2020-06-03 17:40:12 +00:00
class-smtp.php External Libraries: Add class aliases for phpmailerException and SMTP to deprecated files to account for the new namespace. 2020-06-12 21:42:09 +00:00
class-snoopy.php General: Fix various issues flagged by the PHPCompatibilityWP PHPCS ruleset. 2020-05-01 19:07:09 +00:00
class-walker-category-dropdown.php
class-walker-category.php Coding Standards: Use strict comparison where static strings are involved. 2020-05-16 18:42:12 +00:00
class-walker-comment.php Comments: Rename Walker_Comment::comment_text() to ::filter_comment_text() for clarity. 2020-06-02 21:45:10 +00:00
class-walker-nav-menu.php
class-walker-page-dropdown.php
class-walker-page.php Coding Standards: Use strict comparison where static strings are involved. 2020-05-16 18:42:12 +00:00
class-wp-admin-bar.php Administration: Remove any CSS related to Internet Explorer versions 6 – 10. 2020-05-06 20:15:07 +00:00
class-wp-ajax-response.php Docs: Replace "html" and "xhtml" instances in DocBlocks and comments with "HTML" and "XHTML". 2020-06-28 14:02:06 +00:00
class-wp-block-list.php Editor: Introduce WP_Block and WP_Block_List classes 2020-06-25 05:16:11 +00:00
class-wp-block-parser.php
class-wp-block-pattern-categories-registry.php Block Editor: Add the Block Patterns API. 2020-06-24 12:59:11 +00:00
class-wp-block-patterns-registry.php Docs: Miscellaneous DocBlock corrections. 2020-07-07 09:30:04 +00:00
class-wp-block-styles-registry.php Docs: Miscellaneous DocBlock corrections. 2020-06-28 11:53:04 +00:00
class-wp-block-type-registry.php Docs: Add a note that the $args parameter of register_block_type() accepts any public property of WP_Block_Type. 2020-07-26 22:17:01 +00:00
class-wp-block-type.php Docs: Spell "falsey" in a consistent way. 2020-07-02 11:30:02 +00:00
class-wp-block.php Editor: Introduce block context 2020-06-30 11:04:04 +00:00
class-wp-comment-query.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-comment.php Comments: Use comment instead of an empty string for the comment_type DB field value in comments table. 2020-04-17 19:35:06 +00:00
class-wp-customize-control.php Docs: Correct and improve inline docs for parameters that accept a callback function. 2020-07-14 11:56:04 +00:00
class-wp-customize-manager.php I18N: Move code out of a translatable string in WP_Customize_Manager::customize_preview_init(). 2020-07-25 16:01:07 +00:00
class-wp-customize-nav-menus.php Posts, Post Types: Move get_post_states() back to the admin for now, require the file in WP_Customize_Nav_Menus::customize_register() instead. 2020-07-26 10:51:06 +00:00
class-wp-customize-panel.php Coding Standards: Replace echo sprintf() with printf(). 2020-06-20 13:18:11 +00:00
class-wp-customize-section.php
class-wp-customize-setting.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
class-wp-customize-widgets.php Docs: Further corrections and improvements to various inline docblocks. 2020-07-23 07:39:02 +00:00
class-wp-date-query.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-dependency.php Docs: Various corrections to inline docblocks. 2020-07-23 00:48:06 +00:00
class-wp-editor.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-embed.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-error.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-fatal-error-handler.php Upgrade/Install: Rename wp_in_maintenance_mode() to wp_is_maintenance_mode(), for consistency with wp_is_recovery_mode(). 2020-05-31 19:54:24 +00:00
class-wp-feed-cache-transient.php
class-wp-feed-cache.php
class-wp-hook.php
class-wp-http-cookie.php Docs: Further corrections and improvements to various inline docblocks. 2020-07-23 07:39:02 +00:00
class-wp-http-curl.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-http-encoding.php Docs: Improve documentation for optional parameters per the documentation standards. 2020-06-28 11:49:02 +00:00
class-wp-http-ixr-client.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-http-proxy.php Docs: Miscellaneous docblock improvements. 2020-06-26 18:40:04 +00:00
class-wp-http-requests-hooks.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-http-requests-response.php
class-wp-http-response.php
class-wp-http-streams.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-image-editor-gd.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-image-editor-imagick.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-image-editor.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-list-util.php Coding Standards: Use strict comparison in WP_List_Util::filter(). 2020-07-10 12:46:09 +00:00
class-wp-locale-switcher.php
class-wp-locale.php Coding Standards: Use strict comparison where static strings are involved. 2020-05-16 18:42:12 +00:00
class-wp-matchesmapregex.php Docs: Remove extra spaces from @param tags. 2020-06-20 12:58:10 +00:00
class-wp-meta-query.php Docs: Improve docs for arguments that accept a numerically indexed array of associative arrays. 2020-07-14 12:10:05 +00:00
class-wp-metadata-lazyloader.php
class-wp-network-query.php Docs: Capitalize "ID", when referring to a post ID, term ID, etc. in a more consistent way. 2020-06-20 12:02:12 +00:00
class-wp-network.php
class-wp-object-cache.php Docs: Capitalize "ID", when referring to a post ID, term ID, etc. in a more consistent way. 2020-06-20 12:02:12 +00:00
class-wp-oembed-controller.php REST API: Issue a _doing_it_wrong when registering a route without a permission callback. 2020-07-21 12:03:05 +00:00
class-wp-oembed.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-paused-extensions-storage.php Docs: Remove an empty line between @param and @return tags, per the documentation standards. 2020-06-20 11:18:09 +00:00
class-wp-post-type.php Docs: Miscellaneous docblock corrections and improvements. 2020-07-13 22:10:07 +00:00
class-wp-post.php
class-wp-query.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-recovery-mode-cookie-service.php
class-wp-recovery-mode-email-service.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
class-wp-recovery-mode-key-service.php Docs: Remove unnecessary variables names from @return tags. 2020-06-19 22:55:12 +00:00
class-wp-recovery-mode-link-service.php
class-wp-recovery-mode.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
class-wp-rewrite.php Docs: Use more appropriate variable names in the inline docs for action and filter parameters. 2020-07-23 19:06:03 +00:00
class-wp-role.php Docs: Various formatting improvements to inline docblocks. 2020-07-23 00:52:05 +00:00
class-wp-roles.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-session-tokens.php
class-wp-simplepie-file.php
class-wp-simplepie-sanitize-kses.php
class-wp-site-query.php Docs: Further corrections and improvements to various inline docblocks. 2020-07-23 07:39:02 +00:00
class-wp-site.php
class-wp-tax-query.php Docs: Improve docs for arguments that accept a numerically indexed array of associative arrays. 2020-07-14 12:10:05 +00:00
class-wp-taxonomy.php Taxonomy: Add support for default terms for custom taxonomies. 2020-07-07 00:55:03 +00:00
class-wp-term-query.php Taxonomy: Ensure the child_of argument of get_terms() works as expected with 'fields' => 'id=>name' or 'id=>slug'. 2020-07-28 14:23:04 +00:00
class-wp-term.php
class-wp-text-diff-renderer-inline.php
class-wp-text-diff-renderer-table.php Docs: First pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 20:01:04 +00:00
class-wp-theme.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
class-wp-user-meta-session-tokens.php
class-wp-user-query.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
class-wp-user-request.php Docs: Add missing @since tags for WP_User_Request properties. 2020-03-23 20:20:09 +00:00
class-wp-user.php Docs: Miscellaneous DocBlock corrections. 2020-07-23 21:55:04 +00:00
class-wp-walker.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
class-wp-widget-factory.php
class-wp-widget.php Docs: Add missing description for wp_convert_widget_settings() parameters. 2020-07-23 13:50:02 +00:00
class-wp-xmlrpc-server.php XML-RPC: Fix length validation of anonymous commenter's email address. 2020-10-22 02:47:07 +00:00
class-wp.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
class.wp-dependencies.php Script Loader: Add the $group parameter to WP_Dependencies::do_item(). 2020-05-06 16:27:12 +00:00
class.wp-scripts.php Script Loader: Disable concatenation for scripts with translations to ensure they are printed in the right order. 2020-08-27 22:01:05 +00:00
class.wp-styles.php Script Loader: Add the $group parameter to WP_Dependencies::do_item(). 2020-05-06 16:27:12 +00:00
comment-template.php Date/Time: In get_the_date() and related functions, pass the original, unmodified $format value to the filters. 2020-08-31 19:00:08 +00:00
comment.php Comments: Update comment cache in the upgrade routine for changing the comment_type DB field value in comments table. 2020-08-07 16:35:08 +00:00
compat.php Docs: Remove @staticvar tags from core. 2020-06-20 12:40:12 +00:00
cron.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
date.php
default-constants.php Bootstrap/Load: Set WP_DEBUG to true by default on development environments. 2020-07-07 12:57:04 +00:00
default-filters.php Editor: Ensure the required assets for the block directory are enqueued. 2020-07-21 15:38:03 +00:00
default-widgets.php
deprecated.php General: Update code for readability and inclusion 2020-07-23 03:14:06 +00:00
embed-template.php
embed.php Docs: Various formatting improvements to inline docblocks. 2020-07-23 00:52:05 +00:00
error-protection.php Docs: Remove an empty line between @param and @return tags, per the documentation standards. 2020-06-20 11:18:09 +00:00
feed-atom-comments.php
feed-atom.php
feed-rdf.php
feed-rss2-comments.php Docs: Use more appropriate variable names in the inline docs for action and filter parameters. 2020-07-23 19:06:03 +00:00
feed-rss2.php
feed-rss.php
feed.php Coding Standards: Use strict type check for in_array() in wp-includes/feed.php. 2020-07-11 12:14:06 +00:00
formatting.php Formatting: Make the check for empty text in wp_trim_excerpt() more resilient. 2020-08-18 19:37:06 +00:00
functions.php Pings/Trackbacks: Avoid a PHP notice in do_enclose() when encountering a URL without a path in post content. 2020-07-26 14:08:05 +00:00
functions.wp-scripts.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
functions.wp-styles.php Script Loader: Include the script or style handle in _wp_scripts_maybe_doing_it_wrong() message. 2020-06-17 10:16:08 +00:00
general-template.php Date/Time: In get_the_date() and related functions, pass the original, unmodified $format value to the filters. 2020-08-31 19:00:08 +00:00
http.php General: Remove “whitelist” and “blacklist” in favor of more clear and inclusive language. 2020-06-22 17:26:13 +00:00
kses.php Docs: Various corrections to inline docblocks. 2020-07-23 00:48:06 +00:00
l10n.php I18N: Use underscores instead of dashes and interpolation instead of concatenation in domain-specific gettext hooks, per the coding standards: 2020-06-23 10:02:10 +00:00
link-template.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
load.php Bootstrap/Load: Revert [49161] from the 5.5 branch. 2020-10-15 21:19:05 +00:00
locale.php
media-template.php I18N: Merge duplicate "List view" and "Grid view" strings. 2020-07-25 21:32:05 +00:00
media.php Docs: Add documentation and a @since note about the loading attribute added to wp_get_attachment_image(). 2020-08-24 22:14:03 +00:00
meta.php Options, Meta APIs: Update the docs around default metadata values. 2020-08-10 15:53:05 +00:00
ms-blogs.php Docs: Improve documentation for various option functions. 2020-07-05 14:46:03 +00:00
ms-default-constants.php Docs: Remove @staticvar tags from core. 2020-06-20 12:40:12 +00:00
ms-default-filters.php Multisite: Delete the signup entry when a user is deleted from the database. 2020-07-05 11:21:03 +00:00
ms-deprecated.php Administration: Remove the xmlns attribute on the <html> tag. 2020-06-22 21:26:16 +00:00
ms-files.php
ms-functions.php Mail: Ensure that a server hostname can be set by using network_home_url(). 2020-07-24 17:40:06 +00:00
ms-load.php Networks and Sites: Update the link text for "Debugging a WordPress Network" support article in ms_not_installed(). 2020-06-05 09:13:08 +00:00
ms-network.php Docs: Capitalize "ID", when referring to a post ID, term ID, etc. in a more consistent way. 2020-06-20 12:02:12 +00:00
ms-settings.php Coding Standards: Use strict comparison where static strings are involved. 2020-05-16 18:42:12 +00:00
ms-site.php Docs: Document that various metadata functions return false for an invalid ID. 2020-07-28 10:15:04 +00:00
nav-menu-template.php Docs: Miscellaneous DocBlock corrections. 2020-07-08 13:15:03 +00:00
nav-menu.php Posts, Post Types: Move get_post_states() back to the admin for now, require the file in WP_Customize_Nav_Menus::customize_register() instead. 2020-07-26 10:51:06 +00:00
option.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
pluggable-deprecated.php
pluggable.php Mail: PHPMailer swap to use is_email for the default validator. 2020-07-27 20:19:05 +00:00
plugin.php Plugins: Consistently use an empty string as the default value for $replacement and $message parameters in: 2020-07-05 21:09:03 +00:00
post-formats.php Docs: Improve documentation for optional parameters per the documentation standards. 2020-06-28 11:49:02 +00:00
post-template.php Docs: Various formatting improvements to inline docblocks. 2020-07-23 00:52:05 +00:00
post-thumbnail-template.php Post Thumbnails: Change the return value of get_post_thumbnail_id() for a non-existing post to false instead of an empty string. 2020-07-05 10:17:02 +00:00
post.php Taxonomy: Rename the default_taxonomy_$taxonomy option key to default_term_$taxonomy. 2020-07-28 15:42:07 +00:00
query.php Docs: Improve @return tags for various conditional tags. 2020-07-10 20:23:06 +00:00
registration-functions.php
registration.php
rest-api.php REST API: Fix multi-type schemas with integer fields. 2020-08-27 14:45:05 +00:00
revision.php Docs: Miscellaneous DocBlock corrections. 2020-07-23 21:55:04 +00:00
rewrite.php Coding Standards: Use strict comparison where static strings are involved. 2020-05-16 18:42:12 +00:00
rss-functions.php
rss.php XML-RPC: Explicitly unset the reference to the parser resource after calling xml_parser_free() to avoid memory leaks in PHP 7.0.0 or higher. 2020-07-05 15:22:01 +00:00
script-loader.php Script Loader: Add backward compatibility for JavaScript i18n globals and properties deprecated in WordPress 5.5. 2020-08-31 22:44:13 +00:00
session.php
shortcodes.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
sitemaps.php Sitemaps: Prevent incorrect redirection of paged sitemap requests. 2020-08-27 01:37:03 +00:00
spl-autoload-compat.php
taxonomy.php Taxonomy: Rename the default_taxonomy_$taxonomy option key to default_term_$taxonomy. 2020-07-28 15:42:07 +00:00
template-loader.php Coding Standards: Fix instances of Generic.WhiteSpace.ArbitraryParenthesesSpacing.FoundEmpty. 2020-05-26 09:37:10 +00:00
template.php Themes: Allow template loading functions to pass additional arguments to the template via the $args parameter. 2020-07-07 11:01:59 +00:00
theme.php Themes: Add unlink-homepage-logo to the create_initial_theme_features() registration for the custom-logo theme feature. 2020-08-07 21:22:05 +00:00
update.php Upgrade/Install: Only show auto-update for themes that support the feature. 2020-07-30 22:04:05 +00:00
user.php Docs: Document that various metadata functions return false for an invalid ID. 2020-07-28 10:15:04 +00:00
vars.php
version.php XML-RPC: Fix length validation of anonymous commenter's email address. 2020-10-22 02:47:07 +00:00
widgets.php Docs: Another pass at some inline docs fixes mostly made by PHPCBF. 2020-07-23 21:11:05 +00:00
wlwmanifest.xml
wp-db.php Docs: Miscellaneous DocBlock corrections. 2020-07-23 21:55:04 +00:00
wp-diff.php