Make WordPress Core

Ticket #34483: patch.diff

File patch.diff, 636 bytes (added by tomdxw, 9 years ago)

Patch against trunk

  • wp-login.php

    diff --git a/wp-login.php b/wp-login.php
    index 6500fd9..daf86ac 100644
    a b case 'register' : 
    691691        $user_email = '';
    692692        if ( $http_post ) {
    693693                $user_login = isset( $_POST['user_login'] ) ? $_POST['user_login'] : '';
    694                 $user_email = isset( $_POST['user_email'] ) ? $_POST['user_email'] : '';
     694                $user_email = isset( $_POST['user_email'] ) ? wp_unslash($_POST['user_email']) : '';
    695695                $errors = register_new_user($user_login, $user_email);
    696696                if ( !is_wp_error($errors) ) {
    697697                        $redirect_to = !empty( $_POST['redirect_to'] ) ? $_POST['redirect_to'] : 'wp-login.php?checkemail=registered';