WordPress/wp-includes
Andrew Nacin bfb3b89672 Skip protocol checking in esc_url() when we are dealing with a relative URL. Prevents munging of colons in paths and query strings, when present in a protocol-relative URL.
props SergeyBiryukov.
fixes #21974.



git-svn-id: http://core.svn.wordpress.org/trunk@24642 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2013-07-10 13:45:22 +00:00
..
ID3 Include getID3 licensing info. 2013-05-08 20:37:50 +00:00
SimplePie SimplePie: Merge 5e046a3 from upstream. props rlerdorf, see #24210. 2013-07-08 17:10:16 +00:00
Text Declare Text_Diff::trimNewlines() as static. Upstream is not back compat. props aaroncampbell. fixes #24372. 2013-05-25 22:10:53 +00:00
css Compress scripts/styles: 3.6-beta4-24560. 2013-07-05 15:42:57 +00:00
images Copy wpspin_light to wp-includes as wpspin.gif. Use it in media views. see #22728. 2012-12-04 16:18:53 +00:00
js Compress scripts/styles: 3.6-beta4-24592. 2013-07-08 18:58:16 +00:00
pomo Avoid 'Only variables should be passed by reference' warning. fixes #23232. 2013-01-31 01:01:19 +00:00
theme-compat Don't return encoded ampersands from get_post_comments_feed_link() to avoid canonical redirect issues. Apply esc_url() when appropriate. 2012-11-07 19:56:10 +00:00
admin-bar.php Use meta caps edit_post, read_post, and delete_post directly, rather than consulting the post type object. map_meta_cap() handles that for us. props markjaquith, kovshenin. fixes #23226. 2013-07-08 20:05:42 +00:00
atomlib.php Use correct variable in atomlib library, inside an error message. props rlerdorf, see #24110. 2013-05-07 16:37:21 +00:00
author-template.php Switch to a transient for is_multi_author(). props markjaquith, fixes #24445. 2013-07-10 04:20:41 +00:00
bookmark-template.php In wp_list_bookmarks(), don't stomp the categorize argument. Fixes categorized display in the links widget. 2012-11-28 23:19:03 +00:00
bookmark.php Don't cache a non-existent link in get_bookmark(). props wonderboymusic, fixes #21159. 2012-09-13 16:41:43 +00:00
cache.php Correct inline docs for cache.php. props ocean90. fixes #23058. 2013-01-22 20:44:30 +00:00
canonical.php Support IIS 8 and above. 2013-07-08 20:27:06 +00:00
capabilities.php Use meta caps edit_post, read_post, and delete_post directly, rather than consulting the post type object. map_meta_cap() handles that for us. props markjaquith, kovshenin. fixes #23226. 2013-07-08 20:05:42 +00:00
category-template.php PHPDoc fixes and additions. fixes #24616. 2013-06-21 12:45:11 +00:00
category.php Pinking shears 2012-11-17 15:11:29 +00:00
class-IXR.php Specify the encoding in IXR_Server::output(). Props solarissmoke, sergey.s.betke@novgaro.ru, SergeyBiryukov. fixes #4794 2012-08-15 20:12:00 +00:00
class-feed.php Better validation of the URL used in core HTTP requests. 2013-06-21 06:07:47 +00:00
class-http.php Broader fix for [24497] for setup-config.php in trunk. props SergeyBiryukov, markoheijnen. fixes #24627. 2013-06-23 06:02:19 +00:00
class-json.php Patch Services_JSON to use the proper function name and avoid a fatal error. see #24210. 2013-07-08 16:55:34 +00:00
class-oembed.php Better validation of the URL used in core HTTP requests. 2013-06-21 06:07:47 +00:00
class-phpass.php Add strict check to phpass's CheckPassword() method to avoid issues when the method is improperly called. 2013-06-21 01:21:12 +00:00
class-phpmailer.php Update to PHPMailer 5.2.4. props bpetty. fixes #21074. 2013-02-28 18:33:13 +00:00
class-pop3.php
class-simplepie.php Update SimplePie to 1.3.1. Props rmccue, ocean90. fixes #22321 2012-11-05 14:25:25 +00:00
class-smtp.php Update to PHPMailer 5.2.4. props bpetty. fixes #21074. 2013-02-28 18:33:13 +00:00
class-snoopy.php Use correct variable in the deprecated and abandoned Snoopy HTTP client. see #24210. 2013-07-08 17:17:46 +00:00
class-wp-admin-bar.php Don't render the screen reader shortcut 'Log Out' link in the toolbar when the user is not logged in. 2013-06-19 08:15:04 +00:00
class-wp-ajax-response.php Specify the charset in WP_Ajax_Response::send(). Props sergey.s.betke@novgaro.ru, SergeyBiryukov. fixes #19448 2012-08-15 18:17:21 +00:00
class-wp-customize-control.php Remove /extend/ from URLs to wordpress.org/plugins, /themes, and /mobile, as those are all now top-level. see #24389. 2013-05-22 21:01:57 +00:00
class-wp-customize-manager.php Introduce customize_save_after action. 2013-05-24 10:33:30 +00:00
class-wp-customize-section.php Refactor the Customizer accordion so that it can be used in other locations. 2013-02-14 22:58:04 +00:00
class-wp-customize-setting.php Use wp_unslash() instead of stripslashes() and stripslashes_deep(). Use wp_slash() instead of add_magic_quotes(). 2013-03-03 16:30:38 +00:00
class-wp-editor.php TinyMCE: normalize font size for H1 - H6 submenu, fixes #24586. 2013-07-03 02:03:19 +00:00
class-wp-embed.php Use correct escaping function. props duck_. 2013-01-22 16:37:54 +00:00
class-wp-error.php Correct inline docs for is_wp_error(). props johnbillion. fixes #24637. 2013-06-24 18:23:45 +00:00
class-wp-http-ixr-client.php
class-wp-image-editor-gd.php Image editors: multi_resize() should require height and width. Crop is now optional and defaults to false. props DH-Shredder. fixes #23884. 2013-04-22 20:28:05 +00:00
class-wp-image-editor-imagick.php @-silence an Imagick call that causes a warning in PHP 5.4. 2013-07-05 18:43:45 +00:00
class-wp-image-editor.php Image editors: multi_resize() should require height and width. Crop is now optional and defaults to false. props DH-Shredder. fixes #23884. 2013-04-22 20:28:05 +00:00
class-wp-theme.php Revert [23394] until there is a consensus on target="_blank" (or not) for these external links. see #20839. 2013-07-08 13:04:07 +00:00
class-wp-walker.php Fix E_STRICT notices in walkers. props dvarga. see #24356. 2013-05-28 03:29:15 +00:00
class-wp-xmlrpc-server.php Avoid notice in XML-RPC when attaching uploads, when attachments do not have a guid in the DB. props ericmann, markoheijnen. fixes #18310. 2013-07-10 06:11:12 +00:00
class-wp.php Remove double-strip on HTTP_IF_NONE_MATCH, which was done years ago (in #2597). see #21767. 2013-03-01 17:51:16 +00:00
class.wp-dependencies.php Revert [21420] and [21481]. Accepting a string caused back compat problems including the possibility of revealing previously hidden circular dependencies resulting in infinite loops. 2012-10-23 20:32:12 +00:00
class.wp-scripts.php If someone tries to localize 'jquery', which is now an alias with jquery-core and jquery-migrate dependencies, add the data to jquery-core. 2013-07-10 05:38:17 +00:00
class.wp-styles.php WP Styles: Correctly print 'after' data when scripts are concatenated. props stephenh1988. fixes #20836. 2013-04-22 19:22:09 +00:00
comment-template.php Remove pattern="" in the comment form (HTML5 mode) to avoid mistaken :invalid styles. 2013-07-05 21:59:10 +00:00
comment.php PHPDoc fixes and additions. fixes #24616. 2013-06-21 12:45:11 +00:00
compat.php
cron.php Use wp_unslash() instead of stripslashes() and stripslashes_deep(). Use wp_slash() instead of add_magic_quotes(). 2013-03-03 16:30:38 +00:00
default-constants.php Make Twenty Thirteen the default theme. 2013-02-28 19:01:07 +00:00
default-filters.php Normalize the UTF-8 and ISO-8859-1 charset strings stored in blog_charset to make them friendlier with PHP functions that accept a charset such as htmlspecialchars(). 2013-06-25 19:03:17 +00:00
default-widgets.php Avoid an undefined index notice in WP_Widget_Recent_Posts::update(). props jrf. fixes #24577. 2013-06-23 08:20:08 +00:00
deprecated.php Fix context for get_post() in the deprecated wp_get_single_post(). fixes #24602. 2013-06-19 07:58:28 +00:00
feed-atom-comments.php its <=> it's in documentation, along with a rogue the, The, and looses. props trepmal. fixes #22665. 2012-12-20 15:55:32 +00:00
feed-atom.php Don't return encoded ampersands from get_post_comments_feed_link() to avoid canonical redirect issues. Apply esc_url() when appropriate. 2012-11-07 19:56:10 +00:00
feed-rdf.php
feed-rss.php
feed-rss2-comments.php
feed-rss2.php
feed.php Fix typos in phpdoc. props TheLastCicada. fixes #24302. 2013-05-10 01:39:30 +00:00
formatting.php Skip protocol checking in esc_url() when we are dealing with a relative URL. Prevents munging of colons in paths and query strings, when present in a protocol-relative URL. 2013-07-10 13:45:22 +00:00
functions.php Support IIS 8 and above. 2013-07-08 20:27:06 +00:00
functions.wp-scripts.php Fix typo in phpdoc. props fanquake. fixes #23737. 2013-03-11 09:39:55 +00:00
functions.wp-styles.php Stop recommending the init hook in the _doing_it_wrong() message for too-early scripts and styles. Instead, recommend the three _enqueue_scripts hooks. If they're noticing they are doing it wrong, let's push them to 100% correct, not partly correct. 2013-02-02 02:42:09 +00:00
general-template.php Have get_footer() match get_header() etc in [24616]. fixes #24714. 2013-07-09 20:48:02 +00:00
http.php In wp_http_validate_url(), only validate the protocol in lieu of esc_url_raw(). Ensure there is a host component to the URL. fixes #24663. 2013-07-10 13:35:30 +00:00
kses.php Revert 23416, 23419, 23445 except for wp_reset_vars() changes. We are going a different direction with the slashing cleanup, so resetting to a clean slate. see #21767 2013-03-01 16:28:40 +00:00
l10n.php Theme Translations: Allow for theme pomo files to be loaded from WP_LANG_DIR/themes/{$domain}-{$locale}.(p|m)o. 2012-10-31 21:30:33 +00:00
link-template.php Use meta caps edit_post, read_post, and delete_post directly, rather than consulting the post type object. map_meta_cap() handles that for us. props markjaquith, kovshenin. fixes #23226. 2013-07-08 20:05:42 +00:00
load.php Documentation for [24564]. see #23811. 2013-07-08 12:59:10 +00:00
locale.php Add some localized date/time strings to the main wordpress.pot. These strings appear in the admin only but can be leveraged outside of the admin by design. fixes #22916. 2013-06-20 14:27:37 +00:00
media-template.php Allow gallery to be inserted with no links on the images. props chipbennett, helgatheviking, aaroncampbell, wonderboymusic. fixes #18178. 2013-07-03 20:43:19 +00:00
media.php Use wp_basename() in newer media code for filenames to avoid encoding issues on display. props SergeyBiryukov, fixes #23267. 2013-07-08 13:55:50 +00:00
meta.php Avoid an undefined index notice. props DrewAPicture. fixes #22096. 2013-07-08 01:49:13 +00:00
ms-blogs.php Fix typo in phpdoc. props belloswan. fixes #24217. 2013-04-29 12:49:33 +00:00
ms-default-constants.php Multisite in a subdirectory: For subdomain installs, use a root admin cookie path, not a wp-admin specific one. 2012-12-04 00:51:02 +00:00
ms-default-filters.php Remove ms-files.php rewriting from WordPress multisite. fixes #19235. 2012-09-11 22:22:20 +00:00
ms-deprecated.php Deprecate get_user_id_from_string() in favor of get_user_by( $field ) where $field is 'email' or 'login'. props SergeyBiryukov. fixes #23190. 2013-02-16 03:02:15 +00:00
ms-files.php Use stripslashes() instead of wp_unslash() in ms-files.php to avoid formatting.php dependency. props devesine, fixes #24374. 2013-05-20 20:20:22 +00:00
ms-functions.php SMH. 2013-05-01 18:39:56 +00:00
ms-load.php Remove some old debug cruft left by yours truly. fixes #24462. 2013-06-26 19:33:58 +00:00
ms-settings.php Resurrect the switched global. Some are still using it. see #21459 2012-08-22 03:34:00 +00:00
nav-menu-template.php If a nav menu has no items, wait until after the wp_nav_menu_items filter before deciding whether to print nothing. 2013-07-10 05:14:43 +00:00
nav-menu.php Keep the Nav Menu walker from blowing up the layout on empty-titled items. 2013-07-05 15:41:46 +00:00
option.php Pass value and expiration to result hooks in set_transient() and set_site_transient(). props johnbillion, fixes #24583. 2013-06-16 04:06:12 +00:00
pluggable-deprecated.php Remove /extend/ from URLs to wordpress.org/plugins, /themes, and /mobile, as those are all now top-level. see #24389. 2013-05-22 21:01:57 +00:00
pluggable.php Make wp_mail() return the actual result of PHPMailer::Send() instead of always returning true. props chmac. fixes #23642. 2013-06-29 23:03:13 +00:00
plugin.php Add a delimiter to _wp_filter_build_unique_id()'s handling of static method callbacks. props scribu, fixes #23265. 2013-05-14 15:55:21 +00:00
post-formats.php Lose content removal and splitting from get_content_url(). And remove unneeded lines from [24400]. 2013-07-03 22:36:13 +00:00
post-template.php Remove wp_parse_post_content(), get_paged_content(), paginate_content() from 3.6, and remove the new $id parameters for get_the_content() and the_content(). 2013-07-09 05:22:50 +00:00
post-thumbnail-template.php Fix the PHPDoc for the_post_thumbnail(). props georgestephanis. fixes #22885 2012-12-29 17:59:08 +00:00
post.php Remove wp_parse_post_content(), get_paged_content(), paginate_content() from 3.6, and remove the new $id parameters for get_the_content() and the_content(). 2013-07-09 05:22:50 +00:00
query.php Avoid getting tripped up on post content that starts with <!--nextpage-->. props SergeyBiryukov. fixes #16746. 2013-07-09 05:23:53 +00:00
registration-functions.php
registration.php
revision.php Cleanup of the revisions screen, both on the PHP API side, and the JS. 2013-06-26 21:06:50 +00:00
rewrite.php delete_user_setting() and remove_action() were getting called with too many args. props rlerdorf. see #24210. 2013-04-29 13:25:15 +00:00
rss-functions.php
rss.php Better validation of the URL used in core HTTP requests. 2013-06-21 06:07:47 +00:00
script-loader.php Revisions improvements 2013-07-06 10:48:14 +00:00
shortcodes.php Variables passed by reference do not need to be set first. 2013-04-29 14:48:31 +00:00
taxonomy.php Pinking shears 2013-05-20 12:10:58 +00:00
template-loader.php Clean up [22347] a bit. see #14348 2012-10-31 23:01:13 +00:00
template.php Improve punctuation in phpdoc. see #23090. 2013-03-12 09:30:13 +00:00
theme.php Revert [23467]. Removes structured-post-format theme support. 2013-05-30 17:55:14 +00:00
update.php Tighten our braces. Fixes #23118 props evansolomon. 2013-01-04 10:13:51 +00:00
user.php PHPDoc fixes and additions. fixes #24616. 2013-06-21 12:45:11 +00:00
vars.php Support IIS 8 and above. 2013-07-08 20:27:06 +00:00
version.php Compress scripts/styles: 3.6-beta4-24640. 2013-07-10 06:58:52 +00:00
widgets.php Move the PHP4 constructor below the PHP5 one to avoid E_STRICT message. props uuf6429, iandunn. fixes #20801. 2013-05-19 12:32:20 +00:00
wlwmanifest.xml
wp-db.php Partially revert [24459] and only flush insert_id on the next insert or replace query, as we had been doing before. (Yes, this is not how mysql_insert_id() works.) 2013-06-21 18:22:26 +00:00
wp-diff.php Go back to plain text diffs between revisions instead of attempting partial rendering. 2013-05-07 20:34:58 +00:00