id	summary	reporter	owner	description	type	status	priority	milestone	component	version	severity	resolution	keywords	cc
11777	ms-edit.php / addblog action improperly sanitizes domains	Denis-de-Bernardy	ryan	"it uses sanitize_user in non-strict mode with a twist:

{{{
$domain = sanitize_user( str_replace( '/', '', $blog[ 'domain' ] ) );
}}}

as I read sanitize_user, this can allow for subdomains with improper characters in them."	defect (bug)	closed	normal	3.0	Security	3.0	normal	fixed	multisite