MySQL collation type

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Contributor Qurl

    (@qurl)

    I haven’t viewed the whole YouTube video. But I guess when there is an emoji injected into an utf8 database table, there is a security flaw. Well, DW does not use names in general, only for the widget identifier which is generated by WordPress. All other necessary information is referenced by the ID number.

    Thread Starter sillinguist

    (@sillinguist)

    It is not just emoji, it is any multi-tier (4 byte) character, and I presume any malformed 3 byte character.

    Plugin Contributor Qurl

    (@qurl)

    Still, WordPress generates the names.

    As not all db version can use utf8mb4 I really don’t see an urgent issue. Frankly, I come across many old version of MySQL that doesn’t support utf8mb4 almost daily at clients. WordPress (still) supports that and I’m sure it does that in a secure way.

    I agree DW should also support the utf8mb4 and I guess it will in the future.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘MySQL collation type’ is closed to new replies.