WordPress-C
/
WordPress
mirror of https://github.com/WordPress/WordPress.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
23,826 Commits 50 Branches 749 Tags 982 MiB
Commit Graph

12660 Commits

Author SHA1 Message Date
Pascal Birchler 1ab98bf52d Whitelist post arguments in XML-RPC 
Merges [40677] to the 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@40688


git-svn-id: http://core.svn.wordpress.org/branches/3.7@40551 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-16 08:31:09 +00:00
Pascal Birchler a2797f26d2 Bump 3.7 branch to version 3.7.20. 
Built from https://develop.svn.wordpress.org/branches/3.7@40497


git-svn-id: http://core.svn.wordpress.org/branches/3.7@40373 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-04-20 16:30:10 +00:00
James Nylen 85e61d7921 Bump 3.7 branch to version 3.7.19. 
Built from https://develop.svn.wordpress.org/branches/3.7@40212


git-svn-id: http://core.svn.wordpress.org/branches/3.7@40151 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-03-06 16:50:09 +00:00
Aaron Campbell 3e68b0c7d1 Strip control characters before validating redirect. 
Merges [40183] to 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@40194


git-svn-id: http://core.svn.wordpress.org/branches/3.7@40133 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-03-06 13:47:09 +00:00
Aaron Campbell 44b16a7d23 Bump 3.7 branch to version 3.7.18. 
Built from https://develop.svn.wordpress.org/branches/3.7@40006


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39943 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-26 18:31:11 +00:00
Dominik Schilling e62f79cfd7 Query: Ensure that queries work correctly with post type names with special characters. 
Merge of [39952] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@39966


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39903 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-26 13:53:22 +00:00
Aaron Campbell 0a294916d9 Bump 3.7 branch to version 3.7.17. 
Built from https://develop.svn.wordpress.org/branches/3.7@39870


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39807 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 17:00:22 +00:00
Joe McGill 8d4f4a9a05 Media: Fix exif_imagetype check in wp_get_image_mime 
This is a follow up to [39831].

Merges [39850] to the 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@39861


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39798 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 16:46:22 +00:00
Joe McGill e6de513be6 Media: Improve image filetype checking. 
This adds a new function `wp_get_image_mime()` which is used by
`wp_check_filetype_and_ext()` to validate image files using
`exif_imagetype()` if available instead of `getimagesize()`.

`getimagesize()` is less performant than `exif_imagetype()` and is
dependent on GD. If `exif_imagetype()` is not available, it falls back to
`getimagesize()` as before.

If `wp_check_filetype_and_ext()` can't validate the filetype, we now return
`false` for ext/MIME values.

Merges [39831] to the 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@39842


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39780 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 13:21:09 +00:00
Dominik Schilling 30b010ce8a Themes: Fix markup for theme name fallbacks. 
Merge of [39807] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@39819


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39757 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 11:13:14 +00:00
Jeremy Felt c094d37899 Multisite: Use `wp_rand()` in signup key creation. 
Merges [39795] to the 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@39806


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39744 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 05:36:51 +00:00
Dion Hulse 784f429843 Update PHPMailer to 5.2.22. 
The full list of changes is available here:
https://github.com/PHPMailer/PHPMailer/compare/v5.2.21...v5.2.22

Merges [39759] to the 3.7 branch.
Fixes #37210 for 3.7.

Built from https://develop.svn.wordpress.org/branches/3.7@39794


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39732 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 05:28:09 +00:00
Dion Hulse 45af63e137 Mail: Upgrade PHPMailer to 5.2.21. 
Merges [39645], [36083], [33142], [33124], [29783], [27385] to the 3.7 branch.
See #37210.

Built from https://develop.svn.wordpress.org/branches/3.7@39731


git-svn-id: http://core.svn.wordpress.org/branches/3.7@39671 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-06 22:07:14 +00:00
Jeremy Felt 4afbabc9ca Bump 3.7 branch to 3.7.16. 
Built from https://develop.svn.wordpress.org/branches/3.7@38558


git-svn-id: http://core.svn.wordpress.org/branches/3.7@38501 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-09-07 15:02:36 +00:00
Boone Gorges afe460ad19 Bump 3.7 branch to 3.7.15. 
Built from https://develop.svn.wordpress.org/branches/3.7@37836


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37801 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 16:52:09 +00:00
Joe McGill eab4230e88 Media: Improve handling of extensionless filenames. 
Merge of [37756] to the 3.7 branch.

See #37111.
Built from https://develop.svn.wordpress.org/branches/3.7@37825


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37790 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 15:02:09 +00:00
Nikolay Bachiyski 361dc33680 Admin: Escape attachment name in case it contains special characters 
Merge of [37774] to the 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@37795


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37760 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:30:09 +00:00
Jeremy Felt 5e739be4f6 Admin: Allow for the consistent filtering of `auth_redirect_scheme` 
Merge of [37651] to the 3.7 branch.

See #37047.

Built from https://develop.svn.wordpress.org/branches/3.7@37766


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37731 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:14:10 +00:00
Dominik Schilling 5543fabff3 Bump 3.7 branch to 3.7.14. 
Built from https://develop.svn.wordpress.org/branches/3.7@37392


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37358 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-05-06 18:16:17 +00:00
Nikolay Bachiyski b3887842de External Libaries: missed SWF file changes from [37368] 
Built from https://develop.svn.wordpress.org/branches/3.7@37369


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37335 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-05-06 17:51:08 +00:00
Nikolay Bachiyski f5195ba547 External Libraries: Disable Flash backend for Plupload 
Built from https://develop.svn.wordpress.org/branches/3.7@37368


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37334 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-05-06 17:36:10 +00:00
Nikolay Bachiyski 3d1fc411a1 Taxonomies: make sure taxonomy functions work correctly with taxonomy names with special characters 
The codex says that taxonomy names "should only contain lowercase letters and the underscore character", but that's not enforced. It's too late to enforce it, since some plugins haven't been following it and the official phpdoc doesn't mention this restriction.

Merge of [37133] to the 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@37142


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37109 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 17:43:08 +00:00
Dominik Schilling fa21da538e HTTP: Improve detection of valid IP addresses. 
Merge of [37115] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@37123


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37090 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 15:54:08 +00:00
Nikolay Bachiyski 9bf06fa83b Snoopy: use escapeshellarg instead of escapeshellcmd 
We are escaping arguments, not commands, so we'd better use the semantically correct function, even though they are similar.

Merges [37094] to the 3.7 branch.

Built from https://develop.svn.wordpress.org/branches/3.7@37102


git-svn-id: http://core.svn.wordpress.org/branches/3.7@37069 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 14:16:09 +00:00
Dominik Schilling c7fa2a8205 Bump 3.7 branch to 3.7.13. 
Built from https://develop.svn.wordpress.org/branches/3.7@36462


git-svn-id: http://core.svn.wordpress.org/branches/3.7@36429 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 17:30:30 +00:00
Dominik Schilling 6cc57297e7 Better validation of the URL used in HTTP redirects. 
Merges [36444] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@36454


git-svn-id: http://core.svn.wordpress.org/branches/3.7@36421 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 17:01:36 +00:00
Dominik Schilling 44221ce713 HTTP: `0.1.2.3` is not a valid IP. 
Merges [36435] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@36443


git-svn-id: http://core.svn.wordpress.org/branches/3.7@36410 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 13:06:19 +00:00
Dominik Schilling fdcacfe365 Bump 3.7 branch to 3.7.12. 
Built from https://develop.svn.wordpress.org/branches/3.7@36203


git-svn-id: http://core.svn.wordpress.org/branches/3.7@36170 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 18:52:08 +00:00
Aaron Jorbin 336af0d5f0 Theme: Escape error messages 
[36185] for 3.7 branch

Built from https://develop.svn.wordpress.org/branches/3.7@36193


git-svn-id: http://core.svn.wordpress.org/branches/3.7@36160 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 17:30:09 +00:00
Dion Hulse 6ffe93ee09 Background Updates: Remove the 7am/7pm background update check. 
This changeset is a more basic version of [36180], clearing the extra now redundant schedule.
As the functionality for this was introduced in 3.9, [28129] has been backported to 3.7/3.8, allowing the API TTL to be respected by those versions.

See #27772.
Fixes #35323.

Built from https://develop.svn.wordpress.org/trunk@36184


git-svn-id: http://core.svn.wordpress.org/branches/3.7@36151 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 13:24:33 +00:00
Dominik Schilling cdfc66db4d Finish bumping the 3.7 branch to 3.7.11. 
Built from https://develop.svn.wordpress.org/branches/3.7@34191


git-svn-id: http://core.svn.wordpress.org/branches/3.7@34159 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-15 14:51:13 +00:00
Dominik Schilling 79809190ac XMLRPC: Don't allow private posts to be sticky. 
Merge of [33325], [33612], and [34135] to the 3.7 branch.

See #20662.
Built from https://develop.svn.wordpress.org/branches/3.7@34157


git-svn-id: http://core.svn.wordpress.org/branches/3.7@34125 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-14 23:03:17 +00:00
Nikolay Bachiyski 82dac61d61 Shortcodes: don't allow unclosed HTML elements in attributes 
Merges [34134] for 3.7 branch

Built from https://develop.svn.wordpress.org/branches/3.7@34150


git-svn-id: http://core.svn.wordpress.org/branches/3.7@34118 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-14 22:50:08 +00:00
Gary Pendergast d56d0b0e2c WPDB: `get_table_from_query()` didn't find table names with hyphens in them. 
Merge of [33718] to the 3.8 branch.

Props dustinbolton, pento.

See #33470.


Built from https://develop.svn.wordpress.org/branches/3.7@33997


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33966 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-10 07:20:08 +00:00
Gary Pendergast 1b2e6cfa1d Capabilities: Fall back to the `edit_posts` capability for orphaned comments. 
Merge of the `capabilities.php` part of [33614] to the 3.7 branch.

Props pento, dd32.

Fixes #33154.


Built from https://develop.svn.wordpress.org/branches/3.7@33977


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33946 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-09 06:29:09 +00:00
Dominik Schilling 1f59bf6469 Bump 3.7 branch to version 3.7.10. 
Built from https://develop.svn.wordpress.org/branches/3.7@33577


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33544 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 11:53:08 +00:00
Dion Hulse b9e407b164 Fix `do_shortcode('<[shortcode]')` edge case. 
Props miqrogroove.

Merges [33499] to the 3.7 branch.
See #33116.

Built from https://develop.svn.wordpress.org/branches/3.7@33568


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33535 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 07:19:08 +00:00
Dominik Schilling 14f73e7ec1 Comments: IDs are integers. 
Merge of [33555] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@33561


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33528 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 05:00:22 +00:00
Dominik Schilling 42ff9b3d89 Themes: Fix some broken links in the legacy theme preview. 
Merge of [33549] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@33554


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33521 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 04:58:12 +00:00
Dominik Schilling da5b65f8ee Nav menus: Consistent titles in widgets. 
Merge of [33529] to the 3.7 branch.
Built from https://develop.svn.wordpress.org/branches/3.7@33534


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33501 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-03 20:59:07 +00:00
Andrew Ozz 2e7a937153 Backport r33469 and r33470 to 3.7. 
See #33106.
Built from https://develop.svn.wordpress.org/branches/3.7@33525


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33492 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-31 01:46:08 +00:00
Gary Pendergast 630d4c7c8e Bump 3.7 branch to version 3.7.9. 
Built from https://develop.svn.wordpress.org/branches/3.7@33400


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33368 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 11:10:08 +00:00
Gary Pendergast fa946535d7 Shortcodes: Improve the reliablity of shortcodes inside HTML tags. 
Merge of [33359] to the 3.7 branch.

Props miqrogroove.

See #15694.


Built from https://develop.svn.wordpress.org/branches/3.7@33389


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33357 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 05:15:08 +00:00
Gary Pendergast 8a6a7d323e Capabilities: When creating an auto-draft, ensure that the current user still has permission to do so. 
Partial merge of [33357] to the 3.7 branch.


Built from https://develop.svn.wordpress.org/branches/3.7@33379


git-svn-id: http://core.svn.wordpress.org/branches/3.7@33350 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 04:27:09 +00:00
John Blackbourn a8bf70c382 WPDB: Allow queries to reference tables in the dbname.tablename format, and allow table names to contain any valid character, rather than just ASCII. 
Merge of [32368] to the 3.7 branch.

Props pento, willstedt for the initial patch.

See #32090.

Built from https://develop.svn.wordpress.org/branches/3.7@32416


git-svn-id: http://core.svn.wordpress.org/branches/3.7@32386 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 21:14:10 +00:00
Dominik Schilling 8cb1387688 WPDB: When sanity checking query character sets, there's no need to check queries that don't return user data. 
Merges [32374] to the 3.7 branch.

props pento.
fixes #32104.
Built from https://develop.svn.wordpress.org/branches/3.7@32407


git-svn-id: http://core.svn.wordpress.org/branches/3.7@32377 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 20:08:09 +00:00
Helen Hou-Sandí 0697563967 The UTF-8 regex can occasionally fail on very low memory machines. Reduce the amount of memory it uses. 
Merges [32375] to the 3.7 branch.

props pento.
fixes #32204.

Built from https://develop.svn.wordpress.org/branches/3.7@32400


git-svn-id: http://core.svn.wordpress.org/branches/3.7@32370 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 19:44:19 +00:00
Michael Adams 18fcca2916 WPDB: When checking that a string can be sent to MySQL, we shouldn't use `mb_convert_encoding()`, as it behaves differently to MySQL's character encoding conversion. 
Merge of [32364] to the 3.7 branch.

Props mdawaffe, pento, nbachiyski, jorbin, johnjamesjacoby, jeremyfelt.

See #32165.

Built from https://develop.svn.wordpress.org/branches/3.7@32391


git-svn-id: http://core.svn.wordpress.org/branches/3.7@32361 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 19:17:09 +00:00
Michael Adams cd63ed5102 3.7: 
- WPDB: Sanity check that any strings being stored in the DB are not too long to store correctly.
- When upgrading, remove any suspicious comments.

Built from https://develop.svn.wordpress.org/branches/3.7@32318


git-svn-id: http://core.svn.wordpress.org/branches/3.7@32289 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-27 18:35:09 +00:00
Gary Pendergast 82c855cce0 3.7 branch is now 3.7.8. 
Built from https://develop.svn.wordpress.org/branches/3.7@32305


git-svn-id: http://core.svn.wordpress.org/branches/3.7@32276 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-27 14:13:09 +00:00