diff --git a/wp-admin/includes/ajax-actions.php b/wp-admin/includes/ajax-actions.php
index e132ac8..58f797e 100644
a
|
b
|
function wp_ajax_update_theme() { |
3477 | 3477 | ) ); |
3478 | 3478 | } |
3479 | 3479 | |
3480 | | $stylesheet = preg_replace( '/[^A-z0-9_\-]/', '', wp_unslash( $_POST['slug'] ) ); |
| 3480 | $stylesheet = preg_replace( '|[^A-z0-9_/\-]|', '', $_POST['slug'] ); |
3481 | 3481 | $status = array( |
3482 | 3482 | 'update' => 'theme', |
3483 | 3483 | 'slug' => $stylesheet, |
… |
… |
function wp_ajax_delete_theme() { |
3562 | 3562 | ) ); |
3563 | 3563 | } |
3564 | 3564 | |
3565 | | $stylesheet = preg_replace( '/[^A-z0-9_\-]/', '', wp_unslash( $_POST['slug'] ) ); |
| 3565 | $stylesheet = preg_replace( '|[^A-z0-9_/\-]|', '', $_POST['slug'] ); |
3566 | 3566 | $status = array( |
3567 | 3567 | 'delete' => 'theme', |
3568 | 3568 | 'slug' => $stylesheet, |