Warning: This function has been deprecated. Officially dropped security support for Netscape 4 instead.

wp_kses_js_entities( string $content ): string

Removes the HTML JavaScript entities found in early versions of Netscape 4.


Previously, this function was pulled in from the original import of kses and removed a specific vulnerability only existent in early version of Netscape 4. However, this vulnerability never affected any other browsers and can be considered safe for the modern web.

The regular expression which sanitized this vulnerability has been removed in consideration of the performance and energy demands it placed, now merely passing through its input to the return.

Top ↑


$content string Required

Top ↑



Top ↑


File: wp-includes/deprecated.php. View all references

function wp_kses_js_entities( $content ) {
	_deprecated_function( __FUNCTION__, '4.7.0' );

	return preg_replace( '%&\s*\{[^}]*(\}\s*;?|$)%', '', $content );

Top ↑


Version Description
4.7.0 Officially dropped security support for Netscape 4.
1.0.0 Introduced.

Top ↑

User Contributed Notes

You must log in before being able to contribute a note or feedback.