Ticket #10360: 10360.2.diff

wp-settings.php

@@ -588 +588 @@
 
 // If already slashed, strip.
 if ( get_magic_quotes_gpc() ) {
-        $_GET    = stripslashes_deep($_GET   );
-        $_POST   = stripslashes_deep($_POST  );
-        $_COOKIE = stripslashes_deep($_COOKIE);
+        $_GET     = stripslashes_deep($_GET    );
+        $_POST    = stripslashes_deep($_POST   );
+        $_REQUEST = stripslashes_deep($_REQUEST);
+        $_COOKIE  = stripslashes_deep($_COOKIE );
 }
 
 // Escape with wpdb.
-$_GET    = add_magic_quotes($_GET   );
-$_POST   = add_magic_quotes($_POST  );
-$_COOKIE = add_magic_quotes($_COOKIE);
-$_SERVER = add_magic_quotes($_SERVER);
+$_GET     = add_magic_quotes($_GET    );
+$_POST    = add_magic_quotes($_POST   );
+$_REQUEST = add_magic_quotes($_REQUEST);
+$_COOKIE  = add_magic_quotes($_COOKIE );
+$_SERVER  = add_magic_quotes($_SERVER );
 
 do_action('sanitize_comment_cookies');