WordPress.org

Make WordPress Core


Ignore:
Timestamp:
05/31/2010 10:53:02 AM (10 years ago)
Author:
dd32
Message:

Do not stripslashes() passwords during Install, Matches Login/Updating password handling. Props johanee. See #13654

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/install.php

    r14828 r15073  
    184184        $weblog_title = isset( $_POST['weblog_title'] ) ? trim( stripslashes( $_POST['weblog_title'] ) ) : '';
    185185        $user_name = isset($_POST['user_name']) ? trim( stripslashes( $_POST['user_name'] ) ) : 'admin';
    186         $admin_password = isset($_POST['admin_password']) ? trim( stripslashes( $_POST['admin_password'] ) ) : '';
    187         $admin_password_check = isset($_POST['admin_password2']) ? trim( stripslashes( $_POST['admin_password2'] ) ) : '';
     186        $admin_password = isset($_POST['admin_password']) ? $_POST['admin_password'] : '';
     187        $admin_password_check = isset($_POST['admin_password2']) ? $_POST['admin_password2'] : '';
    188188        $admin_email  = isset( $_POST['admin_email']  ) ?trim( stripslashes( $_POST['admin_email'] ) ) : '';
    189189        $public       = isset( $_POST['blog_public']  ) ? (int) $_POST['blog_public'] : 0;
Note: See TracChangeset for help on using the changeset viewer.