Context Navigation

Ticket #36322: 36322.01.patch

File 36322.01.patch, 677 bytes (added by dcavins, 10 years ago)
Un-slash posted email addresses before attempting get_user_by.

diff --git src/wp-login.php src/wp-login.php
index ed3878c..7832e2e 100644

  function retrieve_password() {
         if ( empty( $_POST['user_login'] ) ) {
                 $errors->add('empty_username', __('<strong>ERROR</strong>: Enter a username or email address.'));
         } elseif ( strpos( $_POST['user_login'], '@' ) ) {
                 $user_data = get_user_by( 'email', trim( $_POST['user_login'] ) );
+                $user_data = get_user_by( 'email', trim( wp_unslash( $_POST['user_login'] ) ) );
                 if ( empty( $user_data ) )
                         $errors->add('invalid_email', __('<strong>ERROR</strong>: There is no user registered with that email address.'));
         } else {