diff --git a/src/wp-includes/pluggable.php b/src/wp-includes/pluggable.php
index d7713b7..3443867 100644
a
|
b
|
if ( !function_exists('wp_set_password') ) : |
2205 | 2205 | /** |
2206 | 2206 | * Updates the user's password with a new encrypted one. |
2207 | 2207 | * |
| 2208 | * The $password value must first be sanitized with wp_slash(). |
| 2209 | * |
2208 | 2210 | * For integration with other applications, this function can be overwritten to |
2209 | 2211 | * instead use the other package password checking algorithm. |
2210 | 2212 | * |
diff --git a/src/wp-includes/user.php b/src/wp-includes/user.php
index a83e57e..e087527 100644
a
|
b
|
|
13 | 13 | * 'remember' indices. If the credentials is not given, then the log in form |
14 | 14 | * will be assumed and used if set. |
15 | 15 | * |
| 16 | * The 'user_password' value must first be sanitized with wp_slash(). |
| 17 | * |
16 | 18 | * The various authentication cookies will be set by this function and will be |
17 | 19 | * set for a longer period depending on if the 'remember' credential is set to |
18 | 20 | * true. |
… |
… |
function wp_insert_user( $userdata ) { |
1714 | 1716 | * Update a user in the database. |
1715 | 1717 | * |
1716 | 1718 | * It is possible to update a user's password by specifying the 'user_pass' |
1717 | | * value in the $userdata parameter array. |
| 1719 | * value in the $userdata parameter array. The 'user_pass' value must first be sanitized with wp_slash(). |
1718 | 1720 | * |
1719 | 1721 | * If current user's password is being updated, then the cookies will be |
1720 | 1722 | * cleared. |