Ticket #24367: 24367.2.patch
| File 24367.2.patch, 1.1 KB (added by SergeyBiryukov, 4 years ago) |
|---|
-
wp-admin/includes/user.php
124 124 } 125 125 126 126 /* Check for "\" in password */ 127 if ( false !== strpos( stripslashes($pass1), "\\" ) )127 if ( false !== strpos( $pass1, "\\" ) ) 128 128 $errors->add( 'pass', __( '<strong>ERROR</strong>: Passwords may not contain the character "\\".' ), array( 'form-field' => 'pass1' ) ); 129 129 130 130 /* checking the password has been typed twice the same */ -
wp-includes/user.php
27 27 if ( ! empty($_POST['log']) ) 28 28 $credentials['user_login'] = $_POST['log']; 29 29 if ( ! empty($_POST['pwd']) ) 30 $credentials['user_password'] = $_POST['pwd'];30 $credentials['user_password'] = wp_unslash( $_POST['pwd'] ); 31 31 if ( ! empty($_POST['rememberme']) ) 32 32 $credentials['remember'] = $_POST['rememberme']; 33 33 }
