W3cubDocs

/WordPress

wp_kses_js_entities( string $string )

This function has been deprecated. Officially dropped security support for Netscape 4 instead.

Removes the HTML JavaScript entities found in early versions of Netscape 4.

Description

Previously, this function was pulled in from the original import of kses and removed a specific vulnerability only existent in early version of Netscape 4. However, this vulnerability never affected any other browsers and can be considered safe for the modern web.

The regular expression which sanitized this vulnerability has been removed in consideration of the performance and energy demands it placed, now merely passing through its input to the return.

Parameters

$string

(string) (Required)

Return

(string)

Source

File: wp-includes/deprecated.php

function wp_kses_js_entities( $string ) {
	_deprecated_function( __FUNCTION__, '4.7.0' );

	return preg_replace( '%&\s*\{[^}]*(\}\s*;?|$)%', '', $string );
}

Changelog

Version Description
4.7.0 Officially dropped security support for Netscape 4.
1.0.0 Introduced.

© 2003–2019 WordPress Foundation
Licensed under the GNU GPLv2+ License.
https://developer.wordpress.org/reference/functions/wp_kses_js_entities