WordPress-C
/
WordPress
mirror of https://github.com/WordPress/WordPress.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
25,916 Commits 50 Branches 749 Tags 983 MiB
Commit Graph

13756 Commits

Author SHA1 Message Date
Joe McGill b7be0d01c0 Media: Improve handling of extensionless filenames. 
Merge of [37756] to the 3.9 branch.

See #37111.
Built from https://develop.svn.wordpress.org/branches/3.9@37822


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37787 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:59:24 +00:00
Nikolay Bachiyski 5995443179 Admin: Escape attachment name in case it contains special characters 
Merge of [37774] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@37793


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37758 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:28:14 +00:00
Jeremy Felt 0f819f1f57 Admin: Allow for the consistent filtering of `auth_redirect_scheme` 
Merge of [37651] to the 3.9 branch.

See #37047.

Built from https://develop.svn.wordpress.org/branches/3.9@37764


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37729 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:13:52 +00:00
Dominik Schilling 7f38e9a815 Bump 3.9 branch to 3.9.12. 
Built from https://develop.svn.wordpress.org/branches/3.9@37390


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37356 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-05-06 18:15:30 +00:00
Nikolay Bachiyski d1db26f726 External Libraries: Update plupload from upstream 
Built from https://develop.svn.wordpress.org/branches/3.9@37376


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37342 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-05-06 17:56:15 +00:00
Nikolay Bachiyski 7da57d4ef3 Taxonomies: make sure taxonomy functions work correctly with taxonomy names with special characters 
The codex says that taxonomy names "should only contain lowercase letters and the underscore character", but that's not enforced. It's too late to enforce it, since some plugins haven't been following it and the official phpdoc doesn't mention this restriction.

Merge of [37133] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@37140


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37107 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 17:38:15 +00:00
Dominik Schilling 8576838329 HTTP: Improve detection of valid IP addresses. 
Merge of [37115] to the 3.9 branch.
Built from https://develop.svn.wordpress.org/branches/3.9@37121


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37088 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 15:53:01 +00:00
Nikolay Bachiyski 0ff6ca33c7 Snoopy: use escapeshellarg instead of escapeshellcmd 
We are escaping arguments, not commands, so we'd better use the semantically correct function, even though they are similar.

Merges [37094] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@37100


git-svn-id: http://core.svn.wordpress.org/branches/3.9@37067 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 14:12:14 +00:00
Dominik Schilling ea26079cde Bump 3.9 branch to 3.9.11. 
Built from https://develop.svn.wordpress.org/branches/3.9@36460


git-svn-id: http://core.svn.wordpress.org/branches/3.9@36427 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 17:30:14 +00:00
Dominik Schilling 53226bc6f2 Better validation of the URL used in HTTP redirects. 
Merges [36444] to the 3.9 branch.
Built from https://develop.svn.wordpress.org/branches/3.9@36452


git-svn-id: http://core.svn.wordpress.org/branches/3.9@36419 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 17:01:19 +00:00
Dominik Schilling dfea282b1d HTTP: `0.1.2.3` is not a valid IP. 
Merges [36435] to the 3.9 branch.
Built from https://develop.svn.wordpress.org/branches/3.9@36441


git-svn-id: http://core.svn.wordpress.org/branches/3.9@36408 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 13:05:12 +00:00
Dominik Schilling 97a834aaab Bump 3.9 branch to 3.9.10. 
Built from https://develop.svn.wordpress.org/branches/3.9@36201


git-svn-id: http://core.svn.wordpress.org/branches/3.9@36168 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 18:51:14 +00:00
Aaron Jorbin 5014bb866c Theme: Escape error messages 
[36185] for 3.9 branch

Built from https://develop.svn.wordpress.org/branches/3.9@36191


git-svn-id: http://core.svn.wordpress.org/branches/3.9@36158 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 17:28:14 +00:00
Dion Hulse 96ad697c96 Background Updates: Remove the 7am/7pm background update check. 
This changeset is a more basic version of [36180], clearing the extra now redundant schedule.
As the functionality for this was introduced in 3.9, [28129] has been backported to 3.7/3.8, allowing the API TTL to be respected by those versions.

See #27772.
Fixes #35323.

Built from https://develop.svn.wordpress.org/trunk@36184


git-svn-id: http://core.svn.wordpress.org/branches/3.9@36151 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 13:24:33 +00:00
Dominik Schilling 5ef1e3048b Finish bumping the 3.9 branch to 3.9.11. 
Built from https://develop.svn.wordpress.org/branches/3.9@34196


git-svn-id: http://core.svn.wordpress.org/branches/3.9@34163 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-15 14:53:17 +00:00
Dominik Schilling fdc6949e64 XMLRPC: Don't allow private posts to be sticky. 
Merge of [33325], [33612], and [34135] to the 3.9 branch.

See #20662.
Built from https://develop.svn.wordpress.org/branches/3.9@34155


git-svn-id: http://core.svn.wordpress.org/branches/3.9@34123 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-14 23:02:14 +00:00
Nikolay Bachiyski 008ebcfae7 Shortcodes: don't allow unclosed HTML elements in attributes 
Merges [34134] for 3.9 branch

Built from https://develop.svn.wordpress.org/branches/3.9@34148


git-svn-id: http://core.svn.wordpress.org/branches/3.9@34116 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-14 22:49:30 +00:00
Gary Pendergast b7606aaa3c WPDB: `get_table_from_query()` didn't find table names with hyphens in them. 
Merge of [33718] to the 3.9 branch.

Props dustinbolton, pento.

See #33470.


Built from https://develop.svn.wordpress.org/branches/3.9@33995


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33964 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-10 07:09:14 +00:00
Gary Pendergast 3edf686b37 Capabilities: Fall back to the `edit_posts` capability for orphaned comments. 
Merge of the `capabilities.php` part of [33614] to the 3.9 branch.

Props pento, dd32.

See #33154.


Built from https://develop.svn.wordpress.org/branches/3.9@33975


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33944 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-09 06:14:14 +00:00
Dominik Schilling fc3a293811 Bump 3.9 branch to version 3.9.8. 
Built from https://develop.svn.wordpress.org/branches/3.9@33570


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33537 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 11:40:14 +00:00
Dion Hulse 31ebb3f94b Fix `do_shortcode('<[shortcode]')` edge case. 
Props miqrogroove.

Merges [33499] to the 3.9 branch.
See #33116.

Built from https://develop.svn.wordpress.org/branches/3.9@33566


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33533 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 07:18:46 +00:00
Dominik Schilling 996d8547e3 Comments: IDs are integers. 
Merge of [33555] to the 3.9 branch.
Built from https://develop.svn.wordpress.org/branches/3.9@33559


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33526 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 05:00:06 +00:00
Dominik Schilling 7a06b64959 Themes: Fix some broken links in the legacy theme preview. 
Merge of [33549] to the 3.9 branch.
Built from https://develop.svn.wordpress.org/branches/3.9@33552


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33519 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 04:57:55 +00:00
Dominik Schilling 811541dfe6 Customizer: Use `hash_equals()` for widgets. 
Merge of [33535] to the 3.9 branch.
Built from https://develop.svn.wordpress.org/branches/3.9@33539


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33506 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 04:53:20 +00:00
Dominik Schilling 792858da14 Nav menus: Consistent titles in widgets. 
Merge of [33529] to the 3.9 branch.
Built from https://develop.svn.wordpress.org/branches/3.9@33532


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33499 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-03 20:58:50 +00:00
Andrew Ozz bb869f458b Backport r33469 and r33470 to 3.9. 
See #33106.
Built from https://develop.svn.wordpress.org/branches/3.9@33523


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33490 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-31 01:45:14 +00:00
Gary Pendergast 9641009151 Bump 3.9 branch to version 3.9.7. 
Built from https://develop.svn.wordpress.org/branches/3.9@33398


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33366 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 11:08:13 +00:00
Gary Pendergast aff3c77aad Shortcodes: Improve the reliablity of shortcodes inside HTML tags. 
Merge of [33359] to the 3.9 branch.

Props miqrogroove.

See #15694.


Built from https://develop.svn.wordpress.org/branches/3.9@33386


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33354 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 05:01:14 +00:00
Gary Pendergast c5eb54f359 Capabilities: When creating an auto-draft, ensure that the current user still has permission to do so. 
Merge of [33357] to the 3.9 branch.


Built from https://develop.svn.wordpress.org/branches/3.9@33377


git-svn-id: http://core.svn.wordpress.org/branches/3.9@33348 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 04:12:14 +00:00
John Blackbourn 8f57ec6bbf WPDB: Allow queries to reference tables in the dbname.tablename format, and allow table names to contain any valid character, rather than just ASCII. 
Merge of [32368] to the 3.9 branch.

Props pento, willstedt for the initial patch.

See #32090.

Built from https://develop.svn.wordpress.org/branches/3.9@32414


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32384 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 21:05:14 +00:00
Dominik Schilling 16156dcff9 WPDB: When sanity checking query character sets, there's no need to check queries that don't return user data. 
Merges [32374] to the 3.9 branch.

props pento.
see #32104.
Built from https://develop.svn.wordpress.org/branches/3.9@32405


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32375 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 20:05:46 +00:00
Helen Hou-Sandí cfb6ef101b The UTF-8 regex can occasionally fail on very low memory machines. Reduce the amount of memory it uses. 
Merges [32375] to the 3.9 branch.

props pento.
See #32204.

Built from https://develop.svn.wordpress.org/branches/3.9@32398


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32368 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 19:43:51 +00:00
Michael Adams 1c86df8bbf WPDB: When checking that a string can be sent to MySQL, we shouldn't use `mb_convert_encoding()`, as it behaves differently to MySQL's character encoding conversion. 
Merge of [32364] to the 3.9 branch.

Props mdawaffe, pento, nbachiyski, jorbin, johnjamesjacoby, jeremyfelt.

See #32165.

Built from https://develop.svn.wordpress.org/branches/3.9@32389


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32359 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 19:12:16 +00:00
Andrew Ozz b2c747a38e TinyMCE: work-around a bug in the tags matching regex. 
For 3.9.
Built from https://develop.svn.wordpress.org/branches/3.9@32373


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32343 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-05-06 05:36:17 +00:00
Michael Adams 10be03b2d7 3.9: 
- WPDB: Sanity check that any strings being stored in the DB are not too long to store correctly.
- When upgrading, remove any suspicious comments.

Built from https://develop.svn.wordpress.org/branches/3.9@32316


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32287 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-27 18:30:15 +00:00
Gary Pendergast ad0a3701d4 3.9 branch is now 3.9.6. 
Built from https://develop.svn.wordpress.org/branches/3.9@32303


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32274 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-27 14:12:15 +00:00
Helen Hou-Sandí 67a0654bcb The 3.9 branch is now 3.9.5. 
Built from https://develop.svn.wordpress.org/branches/3.9@32284


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32255 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-23 21:35:52 +00:00
Gary Pendergast fa12b4a44c WPDB: When sanity checking a string by sending it to MySQL for conversion checks, the incorrect data structure was being returned from wpdb::strip_invalid_text(), causing all write queries to fail for some character sets when the query contained non-ASCII characters. 
Merge of [32261] to the 3.9 branch.

See #32051.


Built from https://develop.svn.wordpress.org/branches/3.9@32273


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32244 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-23 11:48:16 +00:00
Gary Pendergast 4e39f0ba11 WPDB: When deciding if a query needs extra sanity checking based on collation, return early when we can. Merges [32232] and [32233] to the 3.9 branch. 
See #32029.


Built from https://develop.svn.wordpress.org/branches/3.9@32239


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32210 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-21 06:58:14 +00:00
Gary Pendergast b435ecd2f8 Fix some `wpdb::check_safe_collation()` calls missed in [32182]. 
Built from https://develop.svn.wordpress.org/branches/3.9@32224


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32198 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 19:04:15 +00:00
Gary Pendergast 6af36f8915 Bump 3.9 branch to 3.9.4. 
Built from https://develop.svn.wordpress.org/branches/3.9@32217


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32191 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 17:37:28 +00:00
Gary Pendergast 7bd9e93fef In Multisite, prevent plugins from unintentionally switching sites. Merge of [32173] to the 3.9 branch. 
Props mdawaffe, pento.


Built from https://develop.svn.wordpress.org/branches/3.9@32200


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32173 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 13:23:15 +00:00
Gary Pendergast 6c6ea88f7d Update the Plupload Flash file to the latest version. Merge of [32168] to the 3.9 branch. 
Props azaozz.


Built from https://develop.svn.wordpress.org/branches/3.9@32198


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32171 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 13:11:15 +00:00
Gary Pendergast dc27207e1f Remove some old backwards compatibility code from TinyMCE. Merge of [32166] to the 3.9 branch. 
Props azaozz.


Built from https://develop.svn.wordpress.org/branches/3.9@32194


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32167 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 12:52:16 +00:00
Gary Pendergast 27c4e15959 Clean up some edge cases in `sanitize_sql_orderby()`. Merge of [32164] to the 3.9 branch. 
Props vortfu, dd32.


Built from https://develop.svn.wordpress.org/branches/3.9@32190


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32163 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 12:36:14 +00:00
Gary Pendergast ff692384e0 `wpdb::$checking_collation` was incorrectly marked as `protected` instead of `private` in [32182]. 
Built from https://develop.svn.wordpress.org/branches/3.9@32185


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32158 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 11:24:15 +00:00
Gary Pendergast e4e09f8491 Merge the query sanity checks from #21212 to the 3.9 branch. 
Props pento, nacin, mdawaffe, DrewAPicture.


Built from https://develop.svn.wordpress.org/branches/3.9@32182


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32155 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 11:09:15 +00:00
Gary Pendergast 932a7677e8 The 3.9 branch is now 3.9.4-alpha. 
Built from https://develop.svn.wordpress.org/branches/3.9@32155


git-svn-id: http://core.svn.wordpress.org/branches/3.9@32130 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-04-20 03:40:15 +00:00
Andrew Nacin d7aecf3611 3.9.3 version bumps. 
Built from https://develop.svn.wordpress.org/branches/3.9@30474


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30465 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 16:29:14 +00:00
Andrew Nacin a067868b73 Prevent high resource usage when hashing large passwords. props mdawaffe, pento 
Merges [30466] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@30468


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30459 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 16:06:14 +00:00
Andrew Nacin 940eb60ad7 Anchor texturize to shortcodes to improve regex efficiency. 
For the 3.9 branch; see [30449] for trunk.

props miqrogroove.
see #29557 for segfault issues.

Built from https://develop.svn.wordpress.org/branches/3.9@30452


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30445 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 14:32:15 +00:00
Andrew Nacin ca3e6728d1 Better validation of the URL used in core HTTP requests. 
Merges [30443] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@30445


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30440 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 14:02:14 +00:00
Andrew Nacin bb7e7f5a0b TinyMCE: Verify HTML in captions. props azaozz 
Merges [30435] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@30437


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30432 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 13:52:15 +00:00
Andrew Nacin e8ea407eb6 Invalidate password keys when a user's email changes. 
Merges [30430] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@30432


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30427 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 13:42:16 +00:00
Andrew Nacin c0357c466d Fix typo in style filter. props miqrogroove 
Merges [30425] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@30427


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30422 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 13:16:42 +00:00
Andrew Nacin 3fa0efa6e3 Playlists are video by default. props duck_ 
Merges [30422] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@30424


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30419 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 13:12:45 +00:00
Andrew Nacin 3224f9b9c2 Use hash_equals() for old md5 hashes. 
Merges [30412] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@30414


git-svn-id: http://core.svn.wordpress.org/branches/3.9@30409 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-11-20 12:02:50 +00:00
Andrew Nacin 14f8d5a6e5 Password resets: Use network_site_url() for form actions. 
Merges [29631] to the 3.9 branch.

props mdawaffe.
fixes #29156.

Built from https://develop.svn.wordpress.org/branches/3.9@29638


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29412 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-27 03:02:15 +00:00
Andrew Nacin f62b6a2c8b 3.9.2 
Built from https://develop.svn.wordpress.org/branches/3.9@29411


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29189 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 18:27:16 +00:00
Andrew Nacin f00aac7c5c Use delimiters when building nonce hashes. Part two of [29384]. 
Built from https://develop.svn.wordpress.org/branches/3.9@29408


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29186 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 17:53:16 +00:00
Andrew Nacin 824ca5b030 Ignore entities in XML-RPC requests. 
Merges [29404] to the 3.9 branch.

props mdawaffe, nacin.

Built from https://develop.svn.wordpress.org/branches/3.9@29405


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29183 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 17:40:17 +00:00
Andrew Nacin 9173953c3e Escape late in get_avatar(). 
Merges [29397] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@29398


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29176 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 07:51:15 +00:00
Andrew Nacin b86cd8511b Disable external entities in ID3. 
Merges [29378] to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@29390


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29168 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 05:57:16 +00:00
Andrew Nacin ad39a33a22 Verify the MAC earlier in WP_Customize_Widgets. props duck_. 
Merges [29377] (and [29028]) to the 3.9 branch.

Built from https://develop.svn.wordpress.org/branches/3.9@29389


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29167 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 05:51:15 +00:00
Andrew Nacin c4b546f41f Constant time for wp_verify_nonce(). 
Merges [29382] to the 3.9 branch.

Adds a second copy of hash_equals() to pluggable.php in case compat.php is not copied over in an update. (The general goal is no cross-file dependencies for minor releases.)

Built from https://develop.svn.wordpress.org/branches/3.9@29384


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29162 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 05:42:16 +00:00
Andrew Nacin 7d2bc0ab0d 3.9.2-alpha 
Built from https://develop.svn.wordpress.org/branches/3.9@29383


git-svn-id: http://core.svn.wordpress.org/branches/3.9@29161 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-08-06 05:26:31 +00:00
Andrew Nacin 38b8a2fbf9 3.9.1 
Built from https://develop.svn.wordpress.org/branches/3.9@28345


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28173 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-07 20:13:14 +00:00
Andrew Nacin 3c530e46cb 3.9.1-RC1 
Built from https://develop.svn.wordpress.org/branches/3.9@28282


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28110 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 05:33:31 +00:00
Andrew Nacin e1f345903f Multisite: Treat 'www' as a special subdomain, reversing 3.9 regression. 
Merges [28280] to the 3.9 branch.

props jeremyfelt.
fixes #27927.

Built from https://develop.svn.wordpress.org/branches/3.9@28281


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28109 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 05:33:17 +00:00
Andrew Nacin d6656c58e0 Multisite: Fix case sensitivity regressions in 3.9. 
Merges [28276] to the 3.9 branch.

props jeremyfelt.
fixes #27866.

Built from https://develop.svn.wordpress.org/branches/3.9@28278


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28106 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 05:26:14 +00:00
Andrew Nacin c51b6347e4 Fix persistence of <track> elements in the body of a [video] shotcode in TinyMCE views. 
Merges [28183] and [28169] to the 3.9 branch.

props azaozz, wonderboymusic.
fixes #27915.

Built from https://develop.svn.wordpress.org/branches/3.9@28273


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28101 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 04:51:14 +00:00
Andrew Nacin 8b65448e85 Refinements for asynchronous rendering in `wp.mce.media.PlaylistView`. 
Merges [28182] to the 3.9 branch.

props gcorne, wonderboymusic.
fixes #27899.

Built from https://develop.svn.wordpress.org/branches/3.9@28272


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28100 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 04:49:15 +00:00
Andrew Nacin 73a09188b8 Customizer: Avoid hiding 'Remove' buttons unrelated to custom headers. 
Merges [28266] to the 3.9 branch.

props rzen, ehg.
fixes #27848.

Built from https://develop.svn.wordpress.org/branches/3.9@28267


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28095 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 04:15:14 +00:00
Andrew Nacin c85dc97274 Drag/drop on the editor to upload: don't trigger the uploader when selected text is being dragged from one window to another. 
Merges [28189] to the 3.9 branch.

props azaozz.
fixes #27880.

Built from https://develop.svn.wordpress.org/branches/3.9@28262


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28090 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 03:28:15 +00:00
Andrew Nacin f2512c50eb Avoid an expensive attachment counting query on the post editing screen. 
Merges [28191], [28194] to the 3.9 branch.

props johnbillion.
fixes #27985.

Built from https://develop.svn.wordpress.org/branches/3.9@28261


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28089 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-06 03:22:17 +00:00
Andrew Nacin 524068c83b Add a compatibility layer in wp-playlist.js to avoid VM errors from MediaElement's plugin bridge in the TinyMCE views for playlists by suppressing playback for files whose mime-type is not supported in the user's browser natively. 
Merges [28171] to the 3.9 branch.

props wonderboymusic.
fixes #27892.

Built from https://develop.svn.wordpress.org/branches/3.9@28247


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28075 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-02 17:02:16 +00:00
Andrew Nacin daddadfb70 Don't set the poster image for videos in a playlist if the image is the video mime-type icon blown up. 
Merges [28158] to the 3.9 branch.

props wonderboymusic.
see #27892.

Built from https://develop.svn.wordpress.org/branches/3.9@28246


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28074 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-02 17:00:14 +00:00
Andrew Nacin 9753a18ddf Add calc() rules for max-width of playlist caption. 
Merges [28174] to the 3.9 branch.

props celloexpressions.
fixes #27923.

Built from https://develop.svn.wordpress.org/branches/3.9@28245


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28073 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-02 16:56:14 +00:00
Andrew Nacin 17457983b4 Properly account for text overflow in .wp-playlist-caption by adding display: block. 
Merges [28172] to the 3.9 branch.

props celloexpressions.
see #27923.

Built from https://develop.svn.wordpress.org/branches/3.9@28244


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28072 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-02 16:54:15 +00:00
Andrew Nacin b4245bb9f6 Properly translate 'Select Poster Image'. 
Merges [28158] to the 3.9 branch.

props dimadin.
fixes #27845.

Built from https://develop.svn.wordpress.org/branches/3.9@28233


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28061 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:49:14 +00:00
Andrew Nacin 8649425906 TinyMCE: fix the "active" state of the Link button when an image wrapped in a link is selected. 
Merges [28185] to the 3.9 branch.

props azaozz.
fixes #27847.

Built from https://develop.svn.wordpress.org/branches/3.9@28232


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28060 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:43:16 +00:00
Andrew Nacin 21796de8ba TinyMCE: When adding a caption to an image that is in a paragraph with other text, move the caption node above the paragraph instead of below. 
Merges [28190] to the 3.9 branch.

props azaozz.
fixes #27922.

Built from https://develop.svn.wordpress.org/branches/3.9@28231


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28059 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:42:14 +00:00
Andrew Nacin 6e4bb1ab4a Support RTL properly when displaying playlists. 
Merges [28173] to the 3.9 branch.

props SergeyBiryukov.
fixes #27924.

Built from https://develop.svn.wordpress.org/branches/3.9@28230


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28058 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:33:15 +00:00
Andrew Nacin 0579fdbc6a Media: Use the proper translated string for Video Playlist "drag info". 
Merges [28178] to the 3.9 branch.

props wonderboymusic.
fixes #27937.

Built from https://develop.svn.wordpress.org/branches/3.9@28229


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28057 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:29:14 +00:00
Andrew Nacin 6b49e2278b Rmove version string from Thickbox so it assumes the WP core version. Bust some caches. 
Merges [28176] to the 3.9 branch.

props celloexpressions.
fixes #27861.

Built from https://develop.svn.wordpress.org/branches/3.9@28228


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28056 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:27:15 +00:00
Andrew Nacin f2f0f62a3e Alter the layout of the checkboxes in the modal view for Audio/Video Details to allow translations more room to breathe. 
Merges [28184] to the 3.9 branch.

props wonderboymusic.
fixes #27893.

Built from https://develop.svn.wordpress.org/branches/3.9@28227


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28055 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:26:15 +00:00
Andrew Nacin 44c39135ab TinyMCE: Restore old wordpress_adv_hidden editor parameter to enable force-showing the kitchen sink. 
Merges [28181] to the 3.9 branch.

props azaozz.
fixes #27963.

Built from https://develop.svn.wordpress.org/branches/3.9@28226


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28054 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:18:15 +00:00
Andrew Nacin 75c9032983 Customizer: Allow to skip cropping header images if image width is smaller than or equal to theme width. 
Merges [28219] to the 3.9 branch.

fixes #27936.

Built from https://develop.svn.wordpress.org/branches/3.9@28225


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28053 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 04:16:14 +00:00
Andrew Nacin b5e12ae249 Shortcode JS: Avoid errors when an escaped shortcode includes a newline between brackets. 
Merges [28223] to the 3.9 branch.

props gcorne.
props Clorith, jorbin for tests.
fixes #27907.

Built from https://develop.svn.wordpress.org/branches/3.9@28224


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28052 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-05-01 03:58:15 +00:00
Mark Jaquith f690e6fe0f Use '&mdash; Select &mdash;' instead of '-- Select --' for nav menus widget. Looks nicer. 
Partially merges [28205] to the 3.9 branch.

see #27878
Built from https://develop.svn.wordpress.org/branches/3.9@28206


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28036 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-25 00:39:37 +00:00
Andrew Nacin 7aa8fbd1dd Run WP_Editors::enqueue_scripts() on admin_print_footer_scripts, instead of admin_footer. 
Fixes incompatibility with the customizer.

Merges [28187] to the 3.9 branch.

props feedmeastraycat.
fixes #27853.

Built from https://develop.svn.wordpress.org/branches/3.9@28203


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28033 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-24 22:06:15 +00:00
Andrew Nacin df62215a18 Editor: Shrink the font size for the chosen format so it fits in more locales. 
Merges [28180] to the 3.9 branch.

props SergeyBiryukov.
fixes #27903.

Built from https://develop.svn.wordpress.org/branches/3.9@28199


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28029 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-24 21:41:17 +00:00
Mark Jaquith 09e4a3ca6c Force users to choose a nav menu in the custom nav menu widget, for a better customizer UX 
Before, they had to make a dummy change to get it to render. Now they
are made to choose a nav menu from the dropdown, which feels more
natural.

Merges [28197] to the 3.9 branch.

fixes #27878. props westonruter
Built from https://develop.svn.wordpress.org/branches/3.9@28198


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28028 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-24 21:10:15 +00:00
Andrew Nacin 3b0cc6d419 Recent Posts Widget: Use ob_end_flush() instead of ob_flush(). 
Merges [28195] to the 3.9 branch.

props m_i_n.
fixes #28009.

Built from https://develop.svn.wordpress.org/branches/3.9@28196


git-svn-id: http://core.svn.wordpress.org/branches/3.9@28026 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-24 19:55:17 +00:00
Andrew Nacin 3dd112ef79 Fix logic inversion in [28124] to ensure widgets stay with themes during a theme switch. 
Merges [28161] to the 3.9 branch.

props gcorne.
fixes #27897.

Built from https://develop.svn.wordpress.org/branches/3.9@28162


git-svn-id: http://core.svn.wordpress.org/branches/3.9@27993 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-19 18:14:16 +00:00
Andrew Nacin 0cecdccf75 The 3.9 branch is now 3.9.1-alpha. 
Built from https://develop.svn.wordpress.org/branches/3.9@28156


git-svn-id: http://core.svn.wordpress.org/branches/3.9@27987 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-16 19:37:46 +00:00
Andrew Nacin 0e85a93967 WordPress 3.9. 
Built from https://develop.svn.wordpress.org/trunk@28153


git-svn-id: http://core.svn.wordpress.org/trunk@27984 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-16 18:01:28 +00:00
Mark Jaquith 4c85eb0dbf Prevent customizer header image list from listing user images twice when no theme-specified images exist 
fixes #27839. props mcsf
Built from https://develop.svn.wordpress.org/trunk@28152


git-svn-id: http://core.svn.wordpress.org/trunk@27983 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-16 18:01:15 +00:00
Andrew Nacin e3a4c57563 Final about page. 
props melchoyce, helen, wonderboymusic, nacin, and the illustrious Michael Pick.
fixes #27713, #27837.

Built from https://develop.svn.wordpress.org/trunk@28150


git-svn-id: http://core.svn.wordpress.org/trunk@27981 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-16 17:40:14 +00:00
Mark Jaquith b9eb0f72e3 Ensure that `wp.media.view.settings.post` is set before accessing the post's id 
Avoids JS error in cases where media-editor is loaded individually
instead of with the whole `wp_enqueue_media()` process.

fixes #27836. props nacin
Built from https://develop.svn.wordpress.org/trunk@28149


git-svn-id: http://core.svn.wordpress.org/trunk@27980 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2014-04-16 15:26:15 +00:00