WordPress/wp-includes
Pascal Birchler d2fb0bd81e General: Remove any usage of wp_reset_vars().
The way `wp_reset_vars()` sets global variables based on `$_POST` and `$_GET` values makes code hard to understand and maintain. It also makes it easy to forget to sanitize input.

This change removes the few places where `wp_reset_vars()` is used in the admin to explicitly use `$_REQUEST` and sanitize any input.

Props swissspidy, audrasjb, davideferre, killua99, weijland, voldemortensen.
Fixes #38073.
Built from https://develop.svn.wordpress.org/trunk@58069


git-svn-id: http://core.svn.wordpress.org/trunk@57534 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2024-05-01 18:01:12 +00:00
..
assets Editor: Update npm packages. 2024-04-09 10:57:27 +00:00
block-bindings Editor: Update Packages with the latest bug fixes for 6.5 RC 1 2024-03-04 14:08:24 +00:00
block-patterns
block-supports Editor: Fix instance element styles for links applying to buttons. 2024-02-20 11:22:09 +00:00
blocks Editor: Update npm packages. 2024-04-09 10:57:27 +00:00
certificates
css Embeds: Remove empty CSS blocks from wp-embed-template.css. 2024-04-30 08:44:05 +00:00
customize UI-Copy: Use capital cased singular for Site Icon. 2024-03-05 00:12:11 +00:00
fonts Editor: Check if mb_strtolower exists before using it in the font library. 2024-03-22 14:17:09 +00:00
html-api HTML API: Fix detection of single-length funky comments. 2024-04-24 07:45:14 +00:00
ID3 External Libraries: Update getID3 to version 1.9.23. 2023-10-20 13:29:27 +00:00
images Media: Replace media icon images with SVG. 2024-02-15 23:49:10 +00:00
interactivity-api Interactivity API: Do not print state if it’s an empty array. 2024-03-15 12:12:09 +00:00
IXR
js Docs: Fix various typos and spelling mistakes. 2024-04-12 17:47:13 +00:00
l10n Code Modernization: Fix implicit nullable parameter type deprecation on PHP 8.4. 2024-04-15 20:03:09 +00:00
php-compat Tests: Use a @requires annotation for readonly() function test. 2023-10-26 20:33:22 +00:00
PHPMailer External Libraries: Upgrade PHPMailer to version 6.9.1. 2023-11-26 19:27:25 +00:00
pomo Coding Standards: Use strict comparison in wp-includes/pomo/plural-forms.php. 2024-03-27 12:30:12 +00:00
Requests External Libraries: Update the Requests library to version 2.0.11. 2024-03-25 12:23:08 +00:00
rest-api REST API: allow overriding excerpt length. 2024-04-30 09:33:05 +00:00
SimplePie
sitemaps Coding Standards: Correct equals sign alignment in various files. 2023-11-02 00:04:24 +00:00
sodium_compat
style-engine Editor: introduce dimensions.aspectRatio block support. 2024-01-31 02:54:17 +00:00
Text Docs: Fix several typos in inline comments. 2024-01-18 22:13:16 +00:00
theme-compat I18N: Improve translator comments for strings containing date formats. 2023-11-26 16:43:30 +00:00
widgets Script Loader: Harden removal of script tag wrappers. 2023-09-29 19:47:21 +00:00
admin-bar.php Toolbar: Replace "Edit Site" link with "Site Editor" in the Admin Toolbar. 2024-04-22 21:06:08 +00:00
atomlib.php
author-template.php
block-bindings.php Editor: Merge uses_context defined by block bindings sources with block types 2024-02-16 12:55:11 +00:00
block-editor.php Editor: Remove 'wp-edit-site' stylesheet enqueue from iframe. 2023-09-27 17:40:20 +00:00
block-i18n.json
block-patterns.php Docs: Improve docblock for WP_Block_Patterns_Registry::register. 2024-02-27 21:05:11 +00:00
block-template-utils.php Block Hooks: Fix @since and deprecated versions. 2024-04-24 12:11:15 +00:00
block-template.php Docs: Add a description for the $wp_embed global. 2024-03-06 05:05:12 +00:00
blocks.php Editor: Add fallback for block version when registering block script module 2024-02-21 11:20:10 +00:00
bookmark-template.php Coding Standards: Use strict comparison in wp-includes/bookmark-template.php. 2024-03-20 12:49:10 +00:00
bookmark.php Coding Standards: Use strict comparison in wp-includes/bookmark.php. 2024-03-23 14:20:11 +00:00
cache-compat.php
cache.php
canonical.php Canonical: Limit post types searched by redirect_guess_404_permalink(). 2024-02-16 23:34:11 +00:00
capabilities.php Docs: Replace multiple single line comments with multi-line comments. 2023-07-09 20:17:29 +00:00
category-template.php Coding Standards: Upgrade WPCS to version 3.0.0. 2023-09-26 00:27:12 +00:00
category.php Docs: Wrap inline @see tags in curly braces. 2023-08-24 09:01:16 +00:00
class-avif-info.php Media: fix potential error in class-avif-info.php::get_item_features(). 2024-04-26 15:02:14 +00:00
class-feed.php
class-http.php
class-IXR.php
class-json.php
class-oembed.php
class-phpass.php
class-phpmailer.php
class-pop3.php
class-requests.php
class-simplepie.php General: Further improve language in SimplePie code comments. 2024-02-17 13:25:10 +00:00
class-smtp.php
class-snoopy.php
class-walker-category-dropdown.php Coding Standards: Restore more descriptive variable names in a few class methods. 2023-09-14 12:46:20 +00:00
class-walker-category.php Coding Standards: Remove superfluous blank lines at the end of various classes. 2023-09-08 09:32:23 +00:00
class-walker-comment.php Coding Standards: Use strict comparison in wp-includes/class-walker-comment.php. 2024-03-18 15:46:13 +00:00
class-walker-nav-menu.php
class-walker-page-dropdown.php Coding Standards: Restore more descriptive variable names in a few class methods. 2023-09-14 12:46:20 +00:00
class-walker-page.php Coding Standards: Restore more descriptive variable names in a few class methods. 2023-09-14 12:46:20 +00:00
class-wp-admin-bar.php Toolbar: Polish design and code combining duplicate profile links. 2024-03-04 21:50:11 +00:00
class-wp-ajax-response.php
class-wp-application-passwords.php
class-wp-block-bindings-registry.php Docs: Remove extra space before @since in WP_Block_Bindings_Registry DocBlock. 2024-04-21 03:52:11 +00:00
class-wp-block-bindings-source.php Editor: Merge uses_context defined by block bindings sources with block types 2024-02-16 12:55:11 +00:00
class-wp-block-editor-context.php
class-wp-block-list.php Coding Standards: Correct equals sign alignment in various files. 2023-11-02 00:04:24 +00:00
class-wp-block-parser-block.php
class-wp-block-parser-frame.php
class-wp-block-parser.php Update editor related npm packages for 6.4 RC1. 2023-10-16 19:17:19 +00:00
class-wp-block-pattern-categories-registry.php
class-wp-block-patterns-registry.php Docs: Improve docblock for WP_Block_Patterns_Registry::register. 2024-02-27 21:05:11 +00:00
class-wp-block-styles-registry.php
class-wp-block-supports.php Editor: Replace property_exists calls in block related functions with instanceof 2023-09-29 10:20:30 +00:00
class-wp-block-template.php
class-wp-block-type-registry.php Prevent unintended behavior when certain objects are unserialized. 2023-10-12 12:34:33 +00:00
class-wp-block-type.php Docs: Fix typo in WP_Block_Type::__construct() DocBlock. 2024-04-19 03:42:18 +00:00
class-wp-block.php Editor: Add id to the supported Image's binding attributes 2024-02-23 09:20:12 +00:00
class-wp-classic-to-block-menu-converter.php Editor: Fix error handling of converting classic to block menus. 2023-08-21 17:51:19 +00:00
class-wp-comment-query.php Query: Remove leading whitespace from certain database queries. 2024-03-02 13:38:07 +00:00
class-wp-comment.php Docs: Add missing @param description in WP_Comment class. 2023-08-24 08:44:24 +00:00
class-wp-customize-control.php Coding Standards: Add missing escaping functions to WP_Customize_Control and WP_Customize_Nav_Menu_Location_Control. 2024-01-28 07:50:18 +00:00
class-wp-customize-manager.php Docs: Update various HelpHub links to avoid unnecessary redirections. 2024-03-11 14:08:10 +00:00
class-wp-customize-nav-menus.php Docs: Various improvements and corrections to inline documentation. 2024-02-16 21:47:12 +00:00
class-wp-customize-panel.php Coding Standards: Correct spacing for spread operators. 2023-09-10 09:04:18 +00:00
class-wp-customize-section.php Coding Standards: Correct spacing for spread operators. 2023-09-10 09:04:18 +00:00
class-wp-customize-setting.php Coding Standards: Correct spacing for spread operators. 2023-09-10 09:04:18 +00:00
class-wp-customize-widgets.php Docs: Fix several typos in inline comments. 2024-01-18 22:13:16 +00:00
class-wp-date-query.php Docs: Various improvements and corrections to inline documentation. 2024-02-16 21:47:12 +00:00
class-wp-dependencies.php Coding Standards: Remove superfluous blank lines at the end of various classes. 2023-09-08 09:32:23 +00:00
class-wp-dependency.php
class-wp-duotone.php Editor: Prevent PHP warning when parsing duotone hue values. 2024-02-18 14:59:07 +00:00
class-wp-editor.php Docs: Document the $current_screen global in _WP_Editors::editor(). 2023-12-16 09:31:29 +00:00
class-wp-embed.php
class-wp-error.php
class-wp-fatal-error-handler.php Docs: Document the $wp_locale global in WP_Fatal_Error_Handler::handle(). 2023-12-16 09:38:25 +00:00
class-wp-feed-cache-transient.php
class-wp-feed-cache.php Docs: Remove @see references for SimplePie classes. 2023-08-10 01:06:21 +00:00
class-wp-hook.php Plugins: Store result of call to array_keys, to save repeated calls in WP_Hook class. 2023-09-18 12:41:18 +00:00
class-wp-http-cookie.php
class-wp-http-curl.php HTTP API: Deprecate WP_Http_Curl and WP_Http_Streams classes. 2023-09-21 18:29:12 +00:00
class-wp-http-encoding.php
class-wp-http-ixr-client.php
class-wp-http-proxy.php
class-wp-http-requests-hooks.php
class-wp-http-requests-response.php Docs: Use US spelling and correct a typing mistake. 2023-10-11 07:05:25 +00:00
class-wp-http-response.php
class-wp-http-streams.php HTTP API: Deprecate WP_Http_Curl and WP_Http_Streams classes. 2023-09-21 18:29:12 +00:00
class-wp-http.php HTTP API: Add support for a description for HTTP status code 425 (Too Early). 2024-04-07 11:18:17 +00:00
class-wp-image-editor-gd.php Coding Standards: Use strict comparison in wp-includes/class-wp-image-editor-gd.php. 2024-04-03 10:33:24 +00:00
class-wp-image-editor-imagick.php Coding Standards: Use strict comparison in wp-includes/class-wp-image-editor-imagick.php. 2024-04-06 13:37:18 +00:00
class-wp-image-editor.php Media: enable AVIF support. 2024-02-02 17:48:15 +00:00
class-wp-list-util.php General: Revert r57698 for WP_List_Util::pluck(). 2024-02-27 22:38:15 +00:00
class-wp-locale-switcher.php I18N: Rename WP_Translation_Controller::instance() method to get_instance(). 2024-01-25 07:53:17 +00:00
class-wp-locale.php
class-wp-matchesmapregex.php Coding Standards: Rename the $oSelf variable in WP_MatchesMapRegex::apply(). 2024-02-06 01:25:14 +00:00
class-wp-meta-query.php Docs: Typo corrections in class WP_Meta_Query. 2024-04-22 20:25:08 +00:00
class-wp-metadata-lazyloader.php
class-wp-navigation-fallback.php Editor: Move wp_navigation schema updating to WP_Navigation_Fallback class. 2023-10-06 14:06:22 +00:00
class-wp-network-query.php Query: Remove leading whitespace from certain database queries. 2024-03-02 13:38:07 +00:00
class-wp-network.php
class-wp-object-cache.php
class-wp-oembed-controller.php Docs: Add a description for the $wp_embed global. 2024-03-06 05:05:12 +00:00
class-wp-oembed.php Docs: Update various HelpHub links to avoid unnecessary redirections. 2024-03-11 14:08:10 +00:00
class-wp-paused-extensions-storage.php Docs: Various improvements and corrections to inline documentation. 2024-02-16 21:47:12 +00:00
class-wp-plugin-dependencies.php Plugins: Remove extra space in a translatable string. 2024-03-08 14:34:11 +00:00
class-wp-post-type.php REST API: Revert the refactor of global styles endpoints in REST API in [57624]. 2024-02-13 15:13:17 +00:00
class-wp-post.php
class-wp-query.php Docs: Update WP_Query::tax_query docblock to reflect that the property can be null. 2024-03-04 14:48:13 +00:00
class-wp-recovery-mode-cookie-service.php
class-wp-recovery-mode-email-service.php
class-wp-recovery-mode-key-service.php Docs: Document the $wp_hasher global in wp_generate_user_request_key(). 2023-12-24 13:05:21 +00:00
class-wp-recovery-mode-link-service.php
class-wp-recovery-mode.php
class-wp-rewrite.php Coding Standards: Use pre-increment/decrement for stand-alone statements. 2023-09-09 09:28:26 +00:00
class-wp-role.php Coding Standards: Remove superfluous blank lines at the end of various classes. 2023-09-08 09:32:23 +00:00
class-wp-roles.php Coding Standards: Use strict comparison in wp-includes/class-wp-roles.php. 2023-07-28 11:37:25 +00:00
class-wp-script-modules.php Script Loader: Add new script_module_loader_src filter for the script module src. 2024-03-15 11:29:07 +00:00
class-wp-scripts.php Script Loader: Remove unused WP_Scripts::get_unaliased_deps() method. 2024-02-05 09:43:12 +00:00
class-wp-session-tokens.php
class-wp-simplepie-file.php Docs: Remove @see references for SimplePie classes. 2023-08-10 01:06:21 +00:00
class-wp-simplepie-sanitize-kses.php Docs: Remove @see references for SimplePie classes. 2023-08-10 01:06:21 +00:00
class-wp-site-query.php Query: Remove leading whitespace from certain database queries. 2024-03-02 13:38:07 +00:00
class-wp-site.php
class-wp-styles.php
class-wp-tax-query.php Docs: Various improvements and corrections to inline documentation. 2024-02-16 21:47:12 +00:00
class-wp-taxonomy.php
class-wp-term-query.php Query: Remove leading whitespace from certain database queries. 2024-03-02 13:38:07 +00:00
class-wp-term.php Code Modernization: Add AllowDynamicProperties attribute to all (parent) classes. 2022-09-12 15:47:14 +00:00
class-wp-text-diff-renderer-inline.php Coding Standards: Allow $newlineEscape parameter in WP_Text_Diff_Renderer_inline::_splitOnWords(). 2024-02-14 19:27:09 +00:00
class-wp-text-diff-renderer-table.php Code Modernization: Declare dynamic properties on WP_Text_Diff_Renderer_Table. 2023-10-15 14:55:23 +00:00
class-wp-textdomain-registry.php I18N: Improve translation file cache group & expiration. 2024-03-14 09:05:11 +00:00
class-wp-theme-json-data.php Coding Standards: Remove superfluous blank lines at the end of various classes. 2023-09-08 09:32:23 +00:00
class-wp-theme-json-resolver.php Editor: disable shadow.defaultPresets for classic themes. 2024-03-27 16:00:12 +00:00
class-wp-theme-json-schema.php Coding Standards: Remove redundant ignore annotations, take 5. 2023-10-02 11:27:24 +00:00
class-wp-theme-json.php Editor: fix spacing in function doc. 2024-04-22 07:20:09 +00:00
class-wp-theme.php Themes: Cache block theme patterns in a transient. 2024-04-19 17:59:16 +00:00
class-wp-user-meta-session-tokens.php
class-wp-user-query.php Docs: Remove extra commas in WP_User_Query::prepare_query() DocBlock. 2024-04-25 10:49:16 +00:00
class-wp-user-request.php
class-wp-user.php Docs: Various improvements and corrections to inline documentation. 2024-02-16 21:47:12 +00:00
class-wp-walker.php Coding Standards: Use strict comparison in wp-includes/class-wp-walker.php. 2024-03-17 09:56:16 +00:00
class-wp-widget-factory.php
class-wp-widget.php Coding Standards: Use strict comparison in wp-includes/class-wp-widget.php. 2023-08-25 01:28:16 +00:00
class-wp-xmlrpc-server.php General: Remove ableist language from code comments. 2024-02-11 19:14:19 +00:00
class-wp.php Coding Standards: Bring more consistency to Last-Modified and ETag checks. 2023-08-13 10:31:23 +00:00
class-wpdb.php Database: Remove back-compat for database servers that don't support utf8mb4. 2024-04-04 15:13:14 +00:00
class.wp-dependencies.php
class.wp-scripts.php
class.wp-styles.php
comment-template.php Themes: Use original template paths when switching blogs. 2024-02-21 19:26:08 +00:00
comment.php General: Consistently cast return value to int in functions that use ceil(). 2024-02-17 15:24:08 +00:00
compat.php General: Increase the minimum supported version of PHP to 7.2.24. 2024-04-11 21:11:16 +00:00
cron.php Docs: Replace "sanity" with "confidence" for inclusive language. 2024-01-03 21:59:19 +00:00
date.php
default-constants.php Docs: Correct @since version for COOKIE_DOMAIN default value change. 2024-04-17 09:46:19 +00:00
default-filters.php Options, Meta APIs: Use more sensible default for autoloading options which allows WordPress core to make a decision. 2024-04-03 21:31:15 +00:00
default-widgets.php
deprecated.php General: Fix various typo issues found in deprecated.php and Font Library unit tests. 2024-04-01 20:45:13 +00:00
embed-template.php
embed.php Docs: Fix various typos and spelling mistakes. 2024-04-12 17:47:13 +00:00
error-protection.php
feed-atom-comments.php Docs: Document the $post global in comment feed templates. 2024-03-04 12:41:10 +00:00
feed-atom.php
feed-rdf.php
feed-rss2-comments.php Docs: Document the $post global in comment feed templates. 2024-03-04 12:41:10 +00:00
feed-rss2.php
feed-rss.php
feed.php
fonts.php Docs: Improve the docblock for _wp_filter_font_directory(). Remove the recommended use section as this is a private use only function. 2024-04-01 02:53:12 +00:00
formatting.php Docs: Various typo corrections in wp-includes/formatting.php. 2024-04-01 20:55:12 +00:00
functions.php Docs: Fix various typos and spelling mistakes. 2024-04-12 17:47:13 +00:00
functions.wp-scripts.php Script Loader: Ensure wp_localize_script() works when called early. 2024-05-01 15:42:11 +00:00
functions.wp-styles.php
general-template.php Script loader: enable fetchpriority attribute in the wp_preload_resources filter. 2024-03-07 07:08:09 +00:00
global-styles-and-settings.php Coding Standards: Use strict comparison in wp_add_global_styles_for_blocks(). 2024-04-20 04:01:18 +00:00
http.php Coding Standards: Use instanceof keyword instead of the is_a() function. 2023-08-03 12:10:28 +00:00
https-detection.php Security: remove the cron event that checked for https support. 2023-09-22 19:08:19 +00:00
https-migration.php
kses.php KSES: Add background-repeat to the list of safe CSS properties. 2023-12-26 14:24:21 +00:00
l10n.php I18N: Actually add all the files for [58061], not just the test fixtures. 2024-04-30 08:39:07 +00:00
link-template.php Coding Standards: Use strict comparison in wp-includes/link-template.php. 2024-03-22 22:07:11 +00:00
load.php I18N: Improve translation file cache group & expiration. 2024-03-14 09:05:11 +00:00
locale.php
media-template.php Media: Change link text when attachment pages disabled. 2023-09-26 14:45:23 +00:00
media.php Docs: Improve incorrect indentation/alignment in a few docblocks. 2024-04-23 12:38:14 +00:00
meta.php Revisions: framework for storing post meta revisions. 2023-09-26 15:32:19 +00:00
ms-blogs.php Networks and Sites: Remove unused $wpdb global in update_blog_details(). 2024-03-29 11:42:13 +00:00
ms-default-constants.php
ms-default-filters.php
ms-deprecated.php Docs: Fix various typos and spelling mistakes. 2024-04-12 17:47:13 +00:00
ms-files.php Coding Standards: Use strict comparison in wp-includes/ms-files.php. 2023-08-23 15:53:24 +00:00
ms-functions.php Docs: Replace miscellaneous incorrect PHPDoc tags. 2023-11-13 11:13:27 +00:00
ms-load.php Coding Standards: Use strict comparison in wp-includes/ms-load.php. 2024-03-25 17:19:17 +00:00
ms-network.php
ms-settings.php
ms-site.php Coding Standards: Use pre-increment/decrement for stand-alone statements. 2023-09-09 09:28:26 +00:00
nav-menu-template.php Docs: Fix various typos and spelling mistakes. 2024-04-12 17:47:13 +00:00
nav-menu.php
option.php Options, Meta APIs: Use more sensible default for autoloading options which allows WordPress core to make a decision. 2024-04-03 21:31:15 +00:00
pluggable-deprecated.php
pluggable.php Users: Account for returning false from the authenticate filter. 2024-04-13 16:33:13 +00:00
plugin.php
post-formats.php
post-template.php Posts, Post Types: Remove redundant function calls in get_body_class(). 2023-08-22 12:30:29 +00:00
post-thumbnail-template.php
post.php Editor: Add item_updated label for wp_template and wp_template_part post types. 2024-04-29 22:32:08 +00:00
query.php Docs: Wrap inline @see tags in curly braces. 2023-08-24 09:01:16 +00:00
registration-functions.php
registration.php
rest-api.php Docs: Use more inclusive term in rest_filter_response_fields docblock. 2024-02-22 09:54:08 +00:00
revision.php Docs: Improve documentation for meta revision functions. 2023-10-23 13:17:22 +00:00
rewrite.php
robots-template.php
rss-functions.php
rss.php Docs: Improve various globals documentation, as per docblock standards. 2024-01-28 08:19:17 +00:00
script-loader.php Script Loader: stop enqueueing some now obsolete polyfills. 2024-04-10 14:42:17 +00:00
script-modules.php Docs: Improve incorrect indentation/alignment in a few docblocks. 2024-04-23 12:38:14 +00:00
session.php
shortcodes.php Shortcodes: Fix small typo in inline documentation. 2024-02-22 15:53:13 +00:00
sitemaps.php
spl-autoload-compat.php
style-engine.php Editor: disable default style engine optimisation. 2023-09-14 04:56:21 +00:00
taxonomy.php Docs: Various improvements and corrections to inline documentation. 2024-02-16 21:47:12 +00:00
template-canvas.php Coding Standards: Remove redundant ignore annotations, take 4. 2023-10-01 00:22:27 +00:00
template-loader.php
template.php Themes: Use original template paths when switching blogs. 2024-02-21 19:26:08 +00:00
theme-i18n.json
theme-previews.php Themes: fix documentation link. 2023-12-08 06:32:24 +00:00
theme-templates.php Script Loader: Enqueue inline style for block template skip link in head instead of footer. 2023-10-13 17:21:22 +00:00
theme.json Editor: disable shadow.defaultPresets for classic themes. 2024-03-27 16:00:12 +00:00
theme.php Docs: Fix various typos and spelling mistakes. 2024-04-12 17:47:13 +00:00
update.php Coding Standards: Include one space after function keyword for closures. 2023-09-12 15:23:18 +00:00
user.php Login and Registration: Slash email address when updating an existing user. 2024-02-26 10:43:06 +00:00
vars.php Permalinks: Detect FrankenPHP web server support. 2024-04-04 13:40:06 +00:00
version.php General: Remove any usage of wp_reset_vars(). 2024-05-01 18:01:12 +00:00
widgets.php Docs: Improve various globals documentation, as per docblock standards. 2024-01-28 08:19:17 +00:00
wp-db.php
wp-diff.php