WordPress.org
Get WordPress

Make WordPress Core

Ticket #40070: sanitize-stylesheet-slug.diff

File sanitize-stylesheet-slug.diff, 435 bytes (added by walterebert, 17 months ago)

Use function sanitize_file_name instead or preg_replace

  • ajax-actions.php

     
    42894289                );
    42904290        }
    42914291
    4292         $stylesheet = preg_replace( '/[^A-z0-9_\-]/', '', wp_unslash( $_POST['slug'] ) );
     4292        $stylesheet = sanitize_file_name( wp_unslash( $_POST['slug'] ) );
    42934293        $status     = array(
    42944294                'update'     => 'theme',
    42954295                'slug'       => $stylesheet,