WordPress-C/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2025-02-27 10:08:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
WordPress/wp-includes
History
whyisjake 03372aee6e General: WordPress updates 
* XML-RPC: Improve error messages for unprivileged users.
* External Libraries: Disable deserialization in Requests_Utility_FilteredIterator
* Embeds: Disable embeds on deactivated Multisite sites.
* Coding standards: Modify escaping functions to avoid potential false positives.
* XML-RPC: Return error message if attachment ID is incorrect.
* Upgrade/install: Improve logic check when determining installation status.
* Meta: Sanitize meta key before checking protection status.
* Themes: Ensure that only privileged users can set a background image when a theme is using the deprecated custom background page.

Brings the changes from [49380,49382-49388] to the 3.9 branch.

Props xknown, zieladam, peterwilsoncc, whyisjake, desrosj, dd32.

Built from https://develop.svn.wordpress.org/branches/3.9@49407


git-svn-id: http://core.svn.wordpress.org/branches/3.9@49166 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2020-10-29 19:15:11 +00:00
..
certificates
WP_HTTP: Update the Root Certificate bundle used for SSL communication by WP_HTTP.
2014-02-27 02:33:14 +00:00
css
Fix persistence of <track> elements in the body of a [video] shotcode in TinyMCE views.
2014-05-06 04:51:14 +00:00
fonts
Update Dashicons.
2014-04-07 17:52:16 +00:00
ID3
Disable external entities in ID3.
2014-08-06 05:57:16 +00:00
images
Edit Image modal:
2014-03-27 22:41:14 +00:00
js
External Libraries: Remove unnecessary / obsoleted MediaElement.js files.
2018-01-16 08:15:17 +00:00
pomo
Fix strict notices in Tests_POMO_PO.
2013-12-01 12:48:10 +00:00
SimplePie
SimplePie: Fix use of DOMElement as array.
2013-09-11 04:02:10 +00:00
Text
Declare Text_Diff::trimNewlines() as static. Upstream is not back compat. props aaroncampbell. fixes #24372.
2013-05-25 22:10:53 +00:00
theme-compat
Theme compat: Move <head profile> to <link>.
2014-03-25 17:22:15 +00:00
admin-bar.php
Reference https://wordpress.org rather than http://wordpress.org in strings, links, comments, etc.
2014-03-03 02:34:27 +00:00
atomlib.php
First there were two, and now there are three -- in the @since versions that came before and that shall be. And so it will be, says nacin.
2013-12-24 18:57:12 +00:00
author-template.php
Remove a redundant title attribute. See #26559. Props joedolson.
2014-03-18 22:02:15 +00:00
bookmark-template.php
Remove old links_recently_updated_* DB options that never had a UI.
2014-04-03 03:10:15 +00:00
bookmark.php
Remove old links_recently_updated_* DB options that never had a UI.
2014-04-03 03:10:15 +00:00
cache.php
User: Invalidate user_activation_key on password update.
2020-04-29 16:56:12 +00:00
canonical.php
First there were two, and now there are three -- in the @since versions that came before and that shall be. And so it will be, says nacin.
2013-12-24 18:57:12 +00:00
capabilities.php
Capabilities: Fall back to the edit_posts capability for orphaned comments.
2015-09-09 06:14:14 +00:00
category-template.php
Popular tags' edit links should respect the current post type. Adds unit test.
2014-03-25 18:40:15 +00:00
category.php
Avoid a notice in get_the_category_by_ID() when is_wp_error( $term ) is false but $term->name is not set. Clarify the @return value of get_category() and get_tag() which return the same possible types as get_term(), which they wrap.
2014-03-13 04:04:15 +00:00
class-feed.php
Inline documentation for hooks in wp-includes/class-feed.php.
2013-10-08 20:07:08 +00:00
class-http.php
Fix a typo in the PHPDoc description for the WP_Http_Curl->max_body_length property.
2014-04-05 05:48:18 +00:00
class-IXR.php
Ignore entities in XML-RPC requests.
2014-08-06 17:40:17 +00:00
class-json.php
Patch Services_JSON to use the proper function name and avoid a fatal error. see #24210.
2013-07-08 16:55:34 +00:00
class-oembed.php
Don't pass variables by reference.
2014-04-05 18:17:14 +00:00
class-phpass.php
Prevent high resource usage when hashing large passwords. props mdawaffe, pento
2014-11-20 16:06:14 +00:00
class-phpmailer.php
Update PHPMailer to 5.2.22.
2017-01-11 05:26:32 +00:00
class-pop3.php
class-simplepie.php
Update SimplePie to 1.3.1. Props rmccue, ocean90. fixes #22321
2012-11-05 14:25:25 +00:00
class-smtp.php
Update PHPMailer to 5.2.22.
2017-01-11 05:26:32 +00:00
class-snoopy.php
Snoopy: use escapeshellarg instead of escapeshellcmd
2016-03-30 14:12:14 +00:00
class-wp-admin-bar.php
Convert argument array documentation to the hash-notation style for WP_Admin_Bar::add_node() and WP_Admin_Bar::add_group().
2014-03-03 06:11:13 +00:00
class-wp-ajax-response.php
Specify the charset in WP_Ajax_Response::send(). Props sergey.s.betke@novgaro.ru, SergeyBiryukov. fixes #19448
2012-08-15 18:17:21 +00:00
class-wp-customize-control.php
Translate custom header customize control strings. Remove final added before beta to see what breakage we might cause by refactoring this class.
2014-04-11 23:25:16 +00:00
class-wp-customize-manager.php
Customize: Ignore invalid customization sessions.
2017-05-16 12:21:15 +00:00
class-wp-customize-section.php
Improve some inline documentation for class properties in WP_Customize_Section.
2014-04-02 03:02:16 +00:00
class-wp-customize-setting.php
Inline documentation for hooks in wp-includes/class-wp-customize-setting.php.
2014-03-06 14:04:13 +00:00
class-wp-customize-widgets.php
Customizer: Use hash_equals() for widgets.
2015-08-04 04:53:20 +00:00
class-wp-editor.php
Remove some old backwards compatibility code from TinyMCE. Merge of [32166] to the 3.9 branch.
2015-04-20 12:52:16 +00:00
class-wp-embed.php
Backport r33469 and r33470 to 3.9.
2015-07-31 01:45:14 +00:00
class-wp-error.php
Correct inline docs for is_wp_error(). props johnbillion. fixes #24637.
2013-06-24 18:23:45 +00:00
class-wp-http-ixr-client.php
Allow query strings for servers in IXR_Client and WP_HTTP_IXR_Client.
2014-03-15 05:01:14 +00:00
class-wp-image-editor-gd.php
In multi_resize() image editor methods, assert that null can only be passed for one of the arguments, not both. Add a lot more unit test assertions to ensure this.
2014-03-27 20:40:17 +00:00
class-wp-image-editor-imagick.php
In multi_resize() image editor methods, assert that null can only be passed for one of the arguments, not both. Add a lot more unit test assertions to ensure this.
2014-03-27 20:40:17 +00:00
class-wp-image-editor.php
In multi_resize() image editor methods, assert that null can only be passed for one of the arguments, not both. Add a lot more unit test assertions to ensure this.
2014-03-27 20:40:17 +00:00
class-wp-theme.php
Themes: Fix markup for theme name fallbacks.
2017-01-11 11:12:53 +00:00
class-wp-walker.php
Revert r25824:25875 from the core.svn.wordpress.org repository.
2013-10-25 02:29:52 +00:00
class-wp-xmlrpc-server.php
General: WordPress updates
2020-10-29 19:15:11 +00:00
class-wp.php
Backporting several bug fixes.
2019-10-14 19:27:12 +00:00
class.wp-dependencies.php
Inline documentation for WP_Dependencies and _WP_Dependency classes.
2013-09-20 19:54:10 +00:00
class.wp-scripts.php
Inline documentation for hooks in wp-includes/class.wp-scripts.php.
2014-03-26 05:48:14 +00:00
class.wp-styles.php
Inline documentation for hooks in wp-includes/class.wp-styles.php.
2014-03-28 21:24:14 +00:00
comment-template.php
Priority fixes for various existing hook documentation.
2014-04-12 00:01:15 +00:00
comment.php
Revert [27115] and let cache backends handle the stripping of spaces in cache keys as necessary.
2014-02-26 22:05:13 +00:00
compat.php
WPDB: When checking that a string can be sent to MySQL, we shouldn't use mb_convert_encoding(), as it behaves differently to MySQL's character encoding conversion.
2015-05-06 19:12:16 +00:00
cron.php
Cron: Fix a case where a cache inconsistency can cause wp_clear_scheduled_hook() to enter an infinite loop. This unravels the function from using other cron api functions to looping over the cron array directly. See #25773
2013-12-07 09:13:11 +00:00
date.php
Fix a copy/paste error in WP_Date_Query parameter description.
2014-03-21 17:53:16 +00:00
default-constants.php
First there were two, and now there are three -- in the @since versions that came before and that shall be. And so it will be, says nacin.
2013-12-24 18:57:12 +00:00
default-filters.php
Allow for custom authentication handlers for all requests.
2014-03-09 15:23:15 +00:00
default-widgets.php
Nav menus: Consistent titles in widgets.
2015-08-03 20:58:50 +00:00
deprecated.php
Clean up deprecated format_to_post() docs. see #27700.
2014-04-07 22:23:14 +00:00
feed-atom-comments.php
Inline documentation for hooks in wp-includes/feed-atom-comments.php.
2013-12-21 20:22:12 +00:00
feed-atom.php
Inline documentation for hooks in wp-includes/feed-atom.php.
2013-09-20 22:50:10 +00:00
feed-rdf.php
Revert r25824:25875 from the core.svn.wordpress.org repository.
2013-10-25 02:29:52 +00:00
feed-rss2-comments.php
Revert r25824:25875 from the core.svn.wordpress.org repository.
2013-10-25 02:29:52 +00:00
feed-rss2.php
Inline documentation for hooks in wp-includes/feed-rss2.php.
2013-09-20 22:27:09 +00:00
feed-rss.php
Revert r25824:25875 from the core.svn.wordpress.org repository.
2013-10-25 02:29:52 +00:00
feed.php
Hardening: Ensure the attributes of enclosures are correctly escaped in RSS and Atom feeds.
2017-11-29 16:42:15 +00:00
formatting.php
User: Invalidate user_activation_key on password update.
2020-04-29 16:56:12 +00:00
functions.php
Backporting several bug fixes.
2019-10-14 19:27:12 +00:00
functions.wp-scripts.php
Inline documentation for hooks in wp-includes/functions.wp-scripts.php.
2013-10-27 17:51:09 +00:00
functions.wp-styles.php
Inline documentation for hooks in wp-includes/functions.wp-styles.php.
2013-10-27 17:59:09 +00:00
general-template.php
Multisite: Improve messaging for previously activated users.
2018-12-13 01:04:11 +00:00
http.php
Backporting several bug fixes.
2019-10-14 19:27:12 +00:00
kses.php
Update wp_kses_bad_protocol() to recognize &colon; on uri attributes,
2019-12-12 18:34:13 +00:00
l10n.php
Priority fixes for various existing hook documentation.
2014-04-12 00:01:15 +00:00
link-template.php
Inline documentation for hooks in wp-includes/link-template.php.
2014-04-14 02:13:16 +00:00
load.php
Revert the conversion of adjacent post queries to WP_Query. Explanation on the ticket.
2014-03-29 06:03:15 +00:00
locale.php
Better description for WP_Locale::_strings_for_pot(). props dimadin. fixes #25937.
2013-11-13 14:01:09 +00:00
media-template.php
Refinements for asynchronous rendering in wp.mce.media.PlaylistView.
2014-05-06 04:49:15 +00:00
media.php
Shortcodes: don't allow unclosed HTML elements in attributes
2015-09-14 22:49:30 +00:00
meta.php
General: WordPress updates
2020-10-29 19:15:11 +00:00
ms-blogs.php
Fix the return description for switch_to_blog() to reflect that it always returns true.
2014-03-02 04:41:15 +00:00
ms-default-constants.php
Use get_current_site() instead of the $current_site global when possible.
2013-11-13 03:23:10 +00:00
ms-default-filters.php
Live network counts of users and sites for small networks.
2013-09-25 16:21:09 +00:00
ms-deprecated.php
Multisite: Validate activation links.
2018-12-13 01:58:11 +00:00
ms-files.php
Use stripslashes() instead of wp_unslash() in ms-files.php to avoid formatting.php dependency. props devesine, fixes #24374.
2013-05-20 20:20:22 +00:00
ms-functions.php
Multisite: Use wp_rand() in signup key creation.
2017-01-11 05:36:32 +00:00
ms-load.php
Multisite: Treat 'www' as a special subdomain, reversing 3.9 regression.
2014-05-06 05:33:17 +00:00
ms-settings.php
Multisite: Fix case sensitivity regressions in 3.9.
2014-05-06 05:26:14 +00:00
nav-menu-template.php
Add the ability to short-circuit wp_nav_menu() via the pre_wp_nav_menu hook. props kasparsd, DrewAPicture, Rarst. fixes #23627.
2014-03-03 20:43:15 +00:00
nav-menu.php
Inline documentation for hooks in wp-includes/nav-menu.php.
2014-03-25 09:04:14 +00:00
option.php
Introduce pre_update_option filter.
2014-03-28 13:57:14 +00:00
pluggable-deprecated.php
Reference https://wordpress.org rather than http://wordpress.org in strings, links, comments, etc.
2014-03-03 02:34:27 +00:00
pluggable.php
General: Backport several commits for release.
2020-06-10 18:52:30 +00:00
plugin.php
Add a missing @since 3.9.0 to the PHPDoc for wp_register_plugin_realpath().
2014-04-07 21:34:14 +00:00
post-formats.php
Allow has_post_format() to be used to check for any format.
2013-11-24 13:45:10 +00:00
post-template.php
Remove _convert_urlencoded_to_entities() from the get_the_content() callback.
2019-09-04 16:48:12 +00:00
post-thumbnail-template.php
Revert [27166].
2014-03-26 18:43:14 +00:00
post.php
Media: Limit thumbnail file deletions to the same directory as the original file.
2018-07-05 15:14:12 +00:00
query.php
User: Invalidate user_activation_key on password update.
2020-04-29 16:56:12 +00:00
registration-functions.php
Lose EOF ?>. Clean up EOF newlines. fixes #12307
2012-01-08 17:01:11 +00:00
registration.php
Lose EOF ?>. Clean up EOF newlines. fixes #12307
2012-01-08 17:01:11 +00:00
revision.php
Inline documentation for hooks in wp-includes/revision.php.
2014-03-25 09:00:14 +00:00
rewrite.php
Fix PHPDoc formatting for WP_Rewrite::add_endpoint().
2014-04-07 21:39:15 +00:00
rss-functions.php
Don't rely on include_path to include files.
2013-09-25 00:18:11 +00:00
rss.php
Inline docs for hooks in MagPie.
2013-09-06 17:19:09 +00:00
script-loader.php
Rmove version string from Thickbox so it assumes the WP core version. Bust some caches.
2014-05-01 04:27:15 +00:00
shortcodes.php
Shortcodes: don't allow unclosed HTML elements in attributes
2015-09-14 22:49:30 +00:00
taxonomy.php
Taxonomies: make sure taxonomy functions work correctly with taxonomy names with special characters
2016-03-30 17:38:15 +00:00
template-loader.php
Add jshintrc to qunit.
2013-10-30 14:39:10 +00:00
template.php
Inline documentation improvements for get_*_template() functions in wp-includes/template.php.
2014-01-05 17:55:11 +00:00
theme.php
Themes: Fix some broken links in the legacy theme preview.
2015-08-04 04:57:55 +00:00
update.php
Background Updates: Remove the 7am/7pm background update check.
2016-01-06 13:24:33 +00:00
user.php
User: Invalidate user_activation_key on password update.
2020-04-29 16:56:12 +00:00
vars.php
Update the wp-inclues/vars.php file header to include Nginx as a recognized web server.
2014-01-10 18:15:13 +00:00
version.php
WordPress 3.9.32.
2020-06-10 21:40:26 +00:00
widgets.php
Fix logic inversion in [28124] to ensure widgets stay with themes during a theme switch.
2014-04-19 18:14:16 +00:00
wlwmanifest.xml
The Pinking Shears stir from their slumber, awakened by what may seem, to those
2013-12-11 19:49:11 +00:00
wp-db.php
WPDB: Check that AUTH_SALT is not empty, Fix a PHP notice when AUTH_SALT is undefined.
2017-11-27 01:14:32 +00:00
wp-diff.php
Remove old debug comment. props nofearinc. fixes #25865.
2013-11-08 22:24:09 +00:00