WordPress.org

Make WordPress Core

Changeset 1751 for trunk/wp-login.php


Ignore:
Timestamp:
10/05/2004 04:22:31 PM (17 years ago)
Author:
saxmatt
Message:

Better redirect cleaning.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-login.php

    r1748 r1751  
    140140        $log = $_POST['log'];
    141141        $pwd = $_POST['pwd'];
    142         $redirect_to = preg_replace('|[^a-z?=&/~.:_-]|i', '', $_POST['redirect_to']);
     142        $redirect_to = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $_POST['redirect_to']);
    143143    }
    144144   
Note: See TracChangeset for help on using the changeset viewer.