Home › Forums › Bug Reports › Field saving does not respect unfiltered_html capability › Reply To: Field saving does not respect unfiltered_html capability
I can confirm (ACF PRO v5.8.7) that this is still an issue for non-admins on a multisite. Filtering the ‘acf/allow_unfiltered_html’ does work and the above link does also fix the problem.
But both fixes are workarounds and the capability still is being ignored. Besides that the above fixes expose vulnerability for all fields where I would like to only allow this for a specific field.
Looking forward to a field-specific (in combination with role) fix.
Welcome to the Advanced Custom Fields community forum.
Browse through ideas, snippets of code, questions and answers between fellow ACF users
Helping others is a great way to earn karma, gain badges and help ACF development!
We’re reaching out to our multilingual users to ask for help in translating ACF 6.1. Help make sure the latest features are available in your language here: https://t.co/TkEc2Exd6U
— Advanced Custom Fields (@wp_acf) May 22, 2023
© 2023 Advanced Custom Fields.
We use cookies to offer you a better browsing experience, analyze site traffic and personalize content. Read about how we use cookies and how you can control them in our Cookie Policy. If you continue to use this site, you consent to our use of cookies.