WordPress-C
/
WordPress
mirror of https://github.com/WordPress/WordPress.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
27,271 Commits 50 Branches 749 Tags 904 MiB
Commit Graph

14683 Commits

Author SHA1 Message Date
Dominik Schilling 5fc965b084 Editor: Prevent adding `javascript:` and `data:` URLs through the inline link dialog. 
Merge of [41393] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@41408


git-svn-id: http://core.svn.wordpress.org/branches/4.0@41241 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 10:20:09 +00:00
Aaron Campbell 395d3d7bfc Bump 4.0 branch to version 4.0.18. 
Built from https://develop.svn.wordpress.org/branches/4.0@40755


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40613 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-16 21:53:42 +00:00
Pascal Birchler 8f69071d2d Media: Simplify upload error message construction. 
Merges [40736] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@40744


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40602 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-16 18:05:18 +00:00
Dominik Schilling 89a35259c0 Customize: Ignore invalid customization sessions. 
Merge of [40704] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@40712


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40575 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-16 12:20:43 +00:00
Pascal Birchler f7259c14e2 Adjust post meta checks 
Merges [40692] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@40700


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40563 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-16 08:53:37 +00:00
Pascal Birchler f35de85c64 Whitelist post arguments in XML-RPC 
Merges [40677] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@40685


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40548 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-16 08:27:19 +00:00
Pascal Birchler 7b33a67b95 Bump 4.0 branch to version 4.0.17. 
Built from https://develop.svn.wordpress.org/branches/4.0@40494


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40370 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-04-20 16:27:43 +00:00
James Nylen a40fe1c493 Bump 4.0 branch to version 4.0.16. 
Built from https://develop.svn.wordpress.org/branches/4.0@40209


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40148 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-03-06 16:39:19 +00:00
Aaron Campbell cd7144b8cd Strip control characters before validating redirect. 
Merges [40183] to 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@40191


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40130 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-03-06 13:45:44 +00:00
Dominik Schilling 706528048b Embeds: URL encode YouTube video IDs for broader compatibility. 
Merge of [40160] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@40168


git-svn-id: http://core.svn.wordpress.org/branches/4.0@40107 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-03-06 12:08:43 +00:00
Aaron Campbell 25e87a205e Bump 4.0 branch to version 4.0.15. 
Built from https://develop.svn.wordpress.org/branches/4.0@40003


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39940 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-26 18:28:20 +00:00
Dominik Schilling 98590a9c90 Query: Ensure that queries work correctly with post type names with special characters. 
Merge of [39952] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@39963


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39900 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-26 13:52:45 +00:00
Aaron Campbell 39566256f7 Bump 4.0 branch to version 4.0.14. 
Built from https://develop.svn.wordpress.org/branches/4.0@39867


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39804 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 16:59:18 +00:00
Joe McGill b236cbe16d Media: Fix exif_imagetype check in wp_get_image_mime 
This is a follow up to [39831].

Merges [39850] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@39858


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39795 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 16:44:41 +00:00
Joe McGill d94f5603fa Media: Improve image filetype checking. 
This adds a new function `wp_get_image_mime()` which is used by
`wp_check_filetype_and_ext()` to validate image files using
`exif_imagetype()` if available instead of `getimagesize()`.

`getimagesize()` is less performant than `exif_imagetype()` and is
dependent on GD. If `exif_imagetype()` is not available, it falls back to
`getimagesize()` as before.

If `wp_check_filetype_and_ext()` can't validate the filetype, we now return
`false` for ext/MIME values.

Merges [39831] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@39839


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39777 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 13:19:18 +00:00
Dominik Schilling d8e0c202c5 Themes: Fix markup for theme name fallbacks. 
Merge of [39807] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@39816


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39754 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 11:12:39 +00:00
Jeremy Felt af786324a1 Multisite: Use `wp_rand()` in signup key creation. 
Merges [39795] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@39803


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39741 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 05:36:18 +00:00
Dion Hulse d04147c2d3 Update PHPMailer to 5.2.22. 
The full list of changes is available here:
https://github.com/PHPMailer/PHPMailer/compare/v5.2.21...v5.2.22

Merges [39759] to the 4.0 branch.
Fixes #37210 for 4.0.

Built from https://develop.svn.wordpress.org/branches/4.0@39791


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39729 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-11 05:26:18 +00:00
Dion Hulse 918f720050 Mail: Upgrade PHPMailer to 5.2.21. 
Merges [39645], [36083], [33142], [33124], [29783] to the 4.0 branch.
See #37210.

Built from https://develop.svn.wordpress.org/branches/4.0@39728


git-svn-id: http://core.svn.wordpress.org/branches/4.0@39668 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-01-06 22:06:41 +00:00
Jeremy Felt b79f440e16 Bump 4.0 branch to 4.0.13. 
Built from https://develop.svn.wordpress.org/branches/4.0@38555


git-svn-id: http://core.svn.wordpress.org/branches/4.0@38498 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-09-07 15:01:17 +00:00
Boone Gorges 7f457eaddd Bump 4.0 branch to 4.0.12. 
Built from https://develop.svn.wordpress.org/branches/4.0@37833


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37798 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 16:42:17 +00:00
Joe McGill a6b669c65d Media: Improve handling of extensionless filenames. 
Merge of [37756] to the 4.0 branch.

See #37111.
Built from https://develop.svn.wordpress.org/branches/4.0@37819


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37784 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:58:18 +00:00
Nikolay Bachiyski 4c2ff51802 Admin: Escape attachment name in case it contains special characters 
Merge of [37774] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@37792


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37757 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:27:49 +00:00
Jeremy Felt 2a56c9cbff Admin: Allow for the consistent filtering of `auth_redirect_scheme` 
Merge of [37651] to the 4.0 branch.

See #37047.

Built from https://develop.svn.wordpress.org/branches/4.0@37763


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37728 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-06-21 14:13:39 +00:00
Dominik Schilling 7277742a5d Bump 4.0 branch to 4.0.11. 
Built from https://develop.svn.wordpress.org/branches/4.0@37389


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37355 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-05-06 18:15:17 +00:00
Nikolay Bachiyski 909877540e External Libraries: Update plupload from upstream 
Built from https://develop.svn.wordpress.org/branches/4.0@37377


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37343 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-05-06 17:56:30 +00:00
Nikolay Bachiyski 217fe37a0f Taxonomies: make sure taxonomy functions work correctly with taxonomy names with special characters 
The codex says that taxonomy names "should only contain lowercase letters and the underscore character", but that's not enforced. It's too late to enforce it, since some plugins haven't been following it and the official phpdoc doesn't mention this restriction.

Merge of [37133] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@37139


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37106 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 17:36:16 +00:00
Dominik Schilling 84ad22efe9 HTTP: Improve detection of valid IP addresses. 
Merge of [37115] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@37120


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37087 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 15:52:49 +00:00
Nikolay Bachiyski 8f0764e4ba Snoopy: use escapeshellarg instead of escapeshellcmd 
We are escaping arguments, not commands, so we'd better use the semantically correct function, even though they are similar.

Merges [37094] to the 4.0 branch.

Built from https://develop.svn.wordpress.org/branches/4.0@37099


git-svn-id: http://core.svn.wordpress.org/branches/4.0@37066 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-03-30 14:11:17 +00:00
Dominik Schilling 20c5220229 Bump 4.0 branch to 4.0.10. 
Built from https://develop.svn.wordpress.org/branches/4.0@36459


git-svn-id: http://core.svn.wordpress.org/branches/4.0@36426 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 17:29:36 +00:00
Dominik Schilling dfc561cd61 Better validation of the URL used in HTTP redirects. 
Merges [36444] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@36451


git-svn-id: http://core.svn.wordpress.org/branches/4.0@36418 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 17:01:06 +00:00
Dominik Schilling 90961ce059 HTTP: `0.1.2.3` is not a valid IP. 
Merges [36435] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@36440


git-svn-id: http://core.svn.wordpress.org/branches/4.0@36407 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-02-02 13:04:58 +00:00
Dominik Schilling 2fdd2703ed Bump 4.0 branch to 4.0.9. 
Built from https://develop.svn.wordpress.org/branches/4.0@36200


git-svn-id: http://core.svn.wordpress.org/branches/4.0@36167 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 18:50:38 +00:00
Aaron Jorbin 126b1f3caf Theme: Escape error messages 
[36185] for 4.0 branch

Built from https://develop.svn.wordpress.org/branches/4.0@36190


git-svn-id: http://core.svn.wordpress.org/branches/4.0@36157 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 17:27:17 +00:00
Dion Hulse 3d3c9ab179 Background Updates: Remove the 7am/7pm background update check. 
This changeset is a more basic version of [36180], clearing the extra now redundant schedule.
As the functionality for this was introduced in 3.9, [28129] has been backported to 3.7/3.8, allowing the API TTL to be respected by those versions.

See #27772.
Fixes #35323.

Built from https://develop.svn.wordpress.org/trunk@36184


git-svn-id: http://core.svn.wordpress.org/branches/4.0@36151 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2016-01-06 13:24:33 +00:00
Helen Hou-Sandí 7fd9eac86a Finish bumping the 4.0 branch to 4.0.8. 
Built from https://develop.svn.wordpress.org/branches/4.0@34193


git-svn-id: http://core.svn.wordpress.org/branches/4.0@34161 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-15 14:51:53 +00:00
Dominik Schilling b81cdd60a3 XMLRPC: Don't allow private posts to be sticky. 
Merge of [33325], [33612], and [34135] to the 4.0 branch.

See #20662.
Built from https://develop.svn.wordpress.org/branches/4.0@34154


git-svn-id: http://core.svn.wordpress.org/branches/4.0@34122 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-14 23:01:37 +00:00
Nikolay Bachiyski 536f3b6517 Shortcodes: don't allow unclosed HTML elements in attributes 
Merges [34134] for 4.0 branch

Built from https://develop.svn.wordpress.org/branches/4.0@34147


git-svn-id: http://core.svn.wordpress.org/branches/4.0@34115 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-14 22:49:17 +00:00
Gary Pendergast 21c8cc7e5a WPDB: `get_table_from_query()` didn't find table names with hyphens in them. 
Merge of [33718] to the 4.0 branch.

Props dustinbolton, pento.

See #33470.


Built from https://develop.svn.wordpress.org/branches/4.0@33994


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33963 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-10 07:05:17 +00:00
Gary Pendergast 4379874534 Capabilities: Fall back to the `edit_posts` capability for orphaned comments. 
Merge of the `capabilities.php` part of [33614] to the 4.0 branch.

Props pento, dd32.

See #33154.


Built from https://develop.svn.wordpress.org/branches/4.0@33974


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33943 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-09-09 06:10:38 +00:00
Dominik Schilling a782df35d7 Bump 4.0 branch to version 4.0.7. 
Built from https://develop.svn.wordpress.org/branches/4.0@33575


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33542 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 11:52:35 +00:00
Dion Hulse b5a80e84fe Fix `do_shortcode('<[shortcode]')` edge case. 
Props miqrogroove.

Merges [33499] to the 4.0 branch.
See #33116.

Built from https://develop.svn.wordpress.org/branches/4.0@33565


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33532 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 07:18:33 +00:00
Dominik Schilling e8797fc7d0 Comments: IDs are integers. 
Merge of [33555] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@33558


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33525 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 04:59:53 +00:00
Dominik Schilling acd70d39a4 Themes: Fix some broken links in the legacy theme preview. 
Merge of [33549] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@33551


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33518 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 04:57:43 +00:00
Dominik Schilling 9e21a4aaf5 Customizer: Use `hash_equals()` for widgets. 
Merge of [33535] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@33538


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33505 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-04 04:53:08 +00:00
Dominik Schilling 30df27a0c7 Nav menus: Consistent titles in widgets. 
Merge of [33529] to the 4.0 branch.
Built from https://develop.svn.wordpress.org/branches/4.0@33531


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33498 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-08-03 20:58:37 +00:00
Andrew Ozz 5b23ca5d93 Backport r33469 and r33470 to 4.0. 
See #33106.
Built from https://develop.svn.wordpress.org/branches/4.0@33522


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33489 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-31 01:44:36 +00:00
Gary Pendergast b3356b6f77 Bump 4.0 branch to version 4.0.6. 
Built from https://develop.svn.wordpress.org/branches/4.0@33397


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33365 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 11:07:33 +00:00
Gary Pendergast 60eb789f93 Shortcodes: Improve the reliablity of shortcodes inside HTML tags. 
Merge of [33359] to the 4.0 branch.

Props miqrogroove.

See #15694.


Built from https://develop.svn.wordpress.org/branches/4.0@33381


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33352 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 04:50:37 +00:00
Gary Pendergast 5d196f2b09 Capabilities: When creating an auto-draft, ensure that the current user still has permission to do so. 
Merge of [33357] to the 4.0 branch.


Built from https://develop.svn.wordpress.org/branches/4.0@33376


git-svn-id: http://core.svn.wordpress.org/branches/4.0@33347 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2015-07-23 04:01:36 +00:00