开发者 | celloexpressions |
---|---|
更新时间 | 2024年7月13日 09:45 |
PHP版本: | 4.7 及以上 |
WordPress版本: | 6.6 |
版权: | GPLv2 |
edit_css
capability to edit_theme_options
, thereby trusting site admins with unfiltered CSS.
/wp-content/plugins/
directoryCore can't guarantee that CSS is properly sanitized when saving it in the database, and the associated capabilities for managing CSS are equivalent to those for posting unfiltered html. Site admins do not have this capability, so they can't manage CSS as a result. However, in most cases this is an acceptable tradeoff for providing custom CSS to site admins, particularly on trusted networks (open networks are encouraged to take greater precautions and consider other solutions besides this plugin). Note that super admins can access custom CSS for any site on the network without this plugin. Because this plugin only provides access to a core feature for more users, all feature requests and non-capability-related support questions apply to WordPress core and not this plugin.