Update dynamic function blacklist for security enhancement

Browse Source

Added a mechanism to dynamically retrieve and merge updated WordPress function lists into the blacklist to prevent unsafe usage in dropdown options. Addresses a security issue (CVE-2025-47691) by using a JSON-based function source tied to WordPress versioning.

...

This commit is contained in:

Mykyta Synelnikov

2025-05-12 13:16:17 +03:00

parent 1181b7956d

commit 9d83fba560

7 changed files with 3941 additions and 5 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

includes/lib/php-scoper-wordpress-excludes/exclude-wordpress-functions.json

+3878

File diff suppressed because it is too large Load Diff