WordPress.org

Make WordPress Core

Context Navigation

← Previous Ticket
Next Ticket →

Opened 2 years ago

#43457 new defect (bug)

`wp_html_split` valid HTML attributes issues

Reported by:	soulseekah	Owned by:
Milestone:	Awaiting Review	Priority:	normal
Severity:	normal	Version:
Component:	Shortcodes	Keywords:
Focuses:		Cc:
PR Number:

Description

There are a handful of valid HTML attributes that shatter wp_html_split.

Since it works by looking for the < character we can break it in many ways, starting from:

https://mathiasbynens.be/demo/crazy-class
https://mathiasbynens.be/demo/html5-id

And ending in the less exotic and crazy:

<span data-content="<p>abcd</p>">loading...</span>

Same goes for CSS attribute selectors in <style> tags.

Related #43456, #39153, #40191

Attachments (1)

43457.tests.diff (943 bytes) - added by soulseekah 2 years ago.

Download all attachments as: .zip

Change History (1)

@soulseekah
2 years ago

Attachment 43457.tests.diff added

Note: See TracTickets for help on using tickets.

Trac UI Preferences

Download in other formats: