Make WordPress Core


Ignore:
Timestamp:
03/01/2013 04:28:40 PM (12 years ago)
Author:
ryan
Message:

Revert 23416, 23419, 23445 except for wp_reset_vars() changes. We are going a different direction with the slashing cleanup, so resetting to a clean slate. see #21767

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/edit-tags.php

    r23416 r23554  
    4848        wp_die( __( 'Cheatin’ uh?' ) );
    4949
    50     $post_data = wp_unslash( $_POST );
    51 
    52     $ret = wp_insert_term( $post_data['tag-name'], $taxonomy, $post_data );
     50    $ret = wp_insert_term( $_POST['tag-name'], $taxonomy, $_POST );
    5351    $location = 'edit-tags.php?taxonomy=' . $taxonomy;
    5452    if ( 'post' != $post_type )
     
    135133
    136134case 'editedtag':
    137 
    138     $post_data = wp_unslash( $_POST );
    139 
    140     $tag_ID = (int) $post_data['tag_ID'];
     135    $tag_ID = (int) $_POST['tag_ID'];
    141136    check_admin_referer( 'update-tag_' . $tag_ID );
    142137
     
    148143        wp_die( __( 'You attempted to edit an item that doesn’t exist. Perhaps it was deleted?' ) );
    149144
    150     $ret = wp_update_term( $tag_ID, $taxonomy, $post_data );
     145    $ret = wp_update_term( $tag_ID, $taxonomy, $_POST );
    151146
    152147    $location = 'edit-tags.php?taxonomy=' . $taxonomy;
     
    170165default:
    171166if ( ! empty($_REQUEST['_wp_http_referer']) ) {
    172     $location = remove_query_arg( array('_wp_http_referer', '_wpnonce'), wp_unslash( $_SERVER['REQUEST_URI'] ) );
     167    $location = remove_query_arg( array('_wp_http_referer', '_wpnonce'), stripslashes($_SERVER['REQUEST_URI']) );
    173168
    174169    if ( ! empty( $_REQUEST['paged'] ) )
     
    270265<?php screen_icon(); ?>
    271266<h2><?php echo esc_html( $title );
    272 if ( ! empty($_REQUEST['s']) )
    273     printf( '<span class="subtitle">' . __('Search results for &#8220;%s&#8221;') . '</span>', esc_html( wp_unslash( $_REQUEST['s'] ) ) ); ?>
     267if ( !empty($_REQUEST['s']) )
     268    printf( '<span class="subtitle">' . __('Search results for &#8220;%s&#8221;') . '</span>', esc_html( stripslashes($_REQUEST['s']) ) ); ?>
    274269</h2>
    275270
Note: See TracChangeset for help on using the changeset viewer.