diff options
| author | Jonathan Desrosiers <desrosj@git.wordpress.org> | 2022-01-06 18:17:02 +0000 |
|---|---|---|
| committer | Jonathan Desrosiers <desrosj@git.wordpress.org> | 2022-01-06 18:17:02 +0000 |
| commit | 683a45dcebd0c3414b4292dfd10022d895f02513 (patch) | |
| tree | be6edfacee6fd56d423eaf9e39f189ecece1fd21 | |
| parent | 6ec895a9157008927efbe37a37a009e1df711c52 (diff) | |
| download | wordpress-683a45dcebd0c3414b4292dfd10022d895f02513.tar.gz wordpress-683a45dcebd0c3414b4292dfd10022d895f02513.zip | |
Grouped backports to the 4.5 branch.
- Query: Improve sanitization within `WP_Tax_Query`.
- Query: Improve sanitization within `WP_Meta_Query`.
- Upgrade/Install: Avoid using `unserialize()` unnecessarily.
- Formatting: Correctly encode ASCII characters in post slugs.
Merges [52454-52457] to the 4.5 branch.
Props vortfu, dd32, ehtis, zieladam, whyisjake, xknown, peterwilsoncc, desrosj, iandunn.
git-svn-id: https://develop.svn.wordpress.org/branches/4.5@52478 602fd350-edb4-49c9-b593-d223f7449a82
| -rw-r--r-- | src/wp-admin/includes/upgrade.php | 4 | ||||
| -rw-r--r-- | src/wp-includes/class-wp-meta-query.php | 2 | ||||
| -rw-r--r-- | src/wp-includes/class-wp-tax-query.php | 8 | ||||
| -rw-r--r-- | src/wp-includes/formatting.php | 17 | ||||
| -rw-r--r-- | src/wp-includes/post.php | 2 |
5 files changed, 21 insertions, 12 deletions
diff --git a/src/wp-admin/includes/upgrade.php b/src/wp-admin/includes/upgrade.php index 3ddbc8b17d..ecc1c26051 100644 --- a/src/wp-admin/includes/upgrade.php +++ b/src/wp-admin/includes/upgrade.php @@ -1235,8 +1235,8 @@ function upgrade_280() { $start = 0; while( $rows = $wpdb->get_results( "SELECT option_name, option_value FROM $wpdb->options ORDER BY option_id LIMIT $start, 20" ) ) { foreach ( $rows as $row ) { - $value = $row->option_value; - if ( !@unserialize( $value ) ) + $value = maybe_unserialize( $row->option_value ); + if ( $value === $row->option_value ) $value = stripslashes( $value ); if ( $value !== $row->option_value ) { update_option( $row->option_name, $value ); diff --git a/src/wp-includes/class-wp-meta-query.php b/src/wp-includes/class-wp-meta-query.php index 5716b5f20f..6177bcb182 100644 --- a/src/wp-includes/class-wp-meta-query.php +++ b/src/wp-includes/class-wp-meta-query.php @@ -710,7 +710,7 @@ class WP_Meta_Query { $clause_compare = strtoupper( $clause['compare'] ); $sibling_compare = strtoupper( $sibling['compare'] ); if ( in_array( $clause_compare, $compatible_compares ) && in_array( $sibling_compare, $compatible_compares ) ) { - $alias = $sibling['alias']; + $alias = preg_replace( '/\W/', '_', $sibling['alias'] ); break; } } diff --git a/src/wp-includes/class-wp-tax-query.php b/src/wp-includes/class-wp-tax-query.php index a842b2c3fe..d9902ed53d 100644 --- a/src/wp-includes/class-wp-tax-query.php +++ b/src/wp-includes/class-wp-tax-query.php @@ -543,7 +543,7 @@ class WP_Tax_Query { // The sibling must both have compatible operator to share its alias. if ( in_array( strtoupper( $sibling['operator'] ), $compatible_operators ) ) { - $alias = $sibling['alias']; + $alias = preg_replace( '/\W/', '_', $sibling['alias'] ); break; } } @@ -573,7 +573,11 @@ class WP_Tax_Query { return; } - $query['terms'] = array_unique( (array) $query['terms'] ); + if ( 'slug' === $query['field'] || 'name' === $query['field'] ) { + $query['terms'] = array_unique( (array) $query['terms'] ); + } else { + $query['terms'] = wp_parse_id_list( $query['terms'] ); + } if ( is_taxonomy_hierarchical( $query['taxonomy'] ) && $query['include_children'] ) { $this->transform_query( $query, 'term_id' ); diff --git a/src/wp-includes/formatting.php b/src/wp-includes/formatting.php index 1555bcdc5e..2162b8f3cb 100644 --- a/src/wp-includes/formatting.php +++ b/src/wp-includes/formatting.php @@ -1064,12 +1064,14 @@ function wp_check_invalid_utf8( $string, $strip = false ) { * Encode the Unicode values to be used in the URI. * * @since 1.5.0 + * @since 5.8.3 Added the `encode_ascii_characters` parameter. * - * @param string $utf8_string - * @param int $length Max length of the string + * @param string $utf8_string String to encode. + * @param int $length Max length of the string + * @param bool $encode_ascii_characters Whether to encode ascii characters such as < " ' * @return string String with Unicode encoded for URI. */ -function utf8_uri_encode( $utf8_string, $length = 0 ) { +function utf8_uri_encode( $utf8_string, $length = 0, $encode_ascii_characters = false ) { $unicode = ''; $values = array(); $num_octets = 1; @@ -1084,11 +1086,14 @@ function utf8_uri_encode( $utf8_string, $length = 0 ) { $value = ord( $utf8_string[ $i ] ); if ( $value < 128 ) { - if ( $length && ( $unicode_length >= $length ) ) { + $char = chr( $value ); + $encoded_char = $encode_ascii_characters ? rawurlencode( $char ) : $char; + $encoded_char_length = strlen( $encoded_char ); + if ( $length && ( $unicode_length + $encoded_char_length ) > $length ) { break; } - $unicode .= chr( $value ); - $unicode_length++; + $unicode .= $encoded_char; + $unicode_length += $encoded_char_length; } else { if ( count( $values ) == 0 ) { if ( $value < 224 ) { diff --git a/src/wp-includes/post.php b/src/wp-includes/post.php index e649c4a45f..d316ef6067 100644 --- a/src/wp-includes/post.php +++ b/src/wp-includes/post.php @@ -3832,7 +3832,7 @@ function _truncate_post_slug( $slug, $length = 200 ) { if ( $decoded_slug === $slug ) $slug = substr( $slug, 0, $length ); else - $slug = utf8_uri_encode( $decoded_slug, $length ); + $slug = utf8_uri_encode( $decoded_slug, $length, true ); } return rtrim( $slug, '-' ); |