Ticket #47783: 47783-magic_quotes_deprecation-wp-core.patch

src/wp-includes/formatting.php

@@ -2676 +2676 @@
  * @return string Returns a string escaped with slashes.
  */
 function addslashes_gpc( $gpc ) {
-        if ( get_magic_quotes_gpc() ) {
-                $gpc = stripslashes( $gpc );
-        }
-
         return wp_slash( $gpc );
 }
 
@@ -4779 +4775 @@
  */
 function wp_parse_str( $string, &$array ) {
         parse_str( $string, $array );
-        if ( get_magic_quotes_gpc() ) {
-                $array = stripslashes_deep( $array );
-        }
+
         /**
          * Filters the array of variables derived from a parsed string.
          *

src/wp-includes/load.php

@@ -925 +925 @@
  * @access private
  */
 function wp_magic_quotes() {
-        // If already slashed, strip.
-        if ( get_magic_quotes_gpc() ) {
-                $_GET    = stripslashes_deep( $_GET );
-                $_POST   = stripslashes_deep( $_POST );
-                $_COOKIE = stripslashes_deep( $_COOKIE );
-        }
-
         // Escape with wpdb.
         $_GET    = add_magic_quotes( $_GET );
         $_POST   = add_magic_quotes( $_POST );

src/wp-includes/rest-api/class-wp-rest-request.php

@@ -689 +689 @@
 
                 parse_str( $this->get_body(), $params );
 
-                /*
-                 * Amazingly, parse_str follows magic quote rules. Sigh.
-                 *
-                 * NOTE: Do not refactor to use `wp_unslash`.
-                 */
-                if ( get_magic_quotes_gpc() ) {
-                        $params = stripslashes_deep( $params );
-                }
-
                 /*
                  * Add to the POST parameters stored internally. If a user has already
                  * set these manually (via `set_body_params`), don't override them.