WordPress.org
Get WordPress

Make WordPress Core


Ignore:
Timestamp:
03/01/2013 04:28:40 PM (12 years ago)
Author:
ryan
Message:

Revert 23416, 23419, 23445 except for wp_reset_vars() changes. We are going a different direction with the slashing cleanup, so resetting to a clean slate. see #21767

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/wp-admin/includes/plugin-install.php

    r23416 r23554  
    117117 */
    118118function install_search_form( $type_selector = true ) {
    119     $type = isset($_REQUEST['type']) ? wp_unslash( $_REQUEST['type'] ) : 'term';
    120     $term = isset($_REQUEST['s']) ? wp_unslash( $_REQUEST['s'] ) : '';
     119    $type = isset($_REQUEST['type']) ? stripslashes( $_REQUEST['type'] ) : 'term';
     120    $term = isset($_REQUEST['s']) ? stripslashes( $_REQUEST['s'] ) : '';
    121121
    122122    ?><form id="search-plugins" method="get" action="">
     
    161161 */
    162162function install_plugins_favorites_form() {
    163     $user = ! empty( $_GET['user'] ) ? wp_unslash( $_GET['user'] ) : get_user_option( 'wporg_favorites' );
     163    $user = ! empty( $_GET['user'] ) ? stripslashes( $_GET['user'] ) : get_user_option( 'wporg_favorites' );
    164164    ?>
    165165    <p class="install-help"><?php _e( 'If you have marked plugins as favorites on WordPress.org, you can browse them here.' ); ?></p>
     
    252252    }
    253253    if ( isset($_GET['from']) )
    254         $url .= '&amp;from=' . urlencode( wp_unslash( $_GET['from'] ) );
     254        $url .= '&amp;from=' . urlencode(stripslashes($_GET['from']));
    255255
    256256    return compact('status', 'url', 'version');
     
    265265    global $tab;
    266266
    267     $api = plugins_api('plugin_information', array('slug' => wp_unslash( $_REQUEST['plugin'] ) ));
     267    $api = plugins_api('plugin_information', array('slug' => stripslashes( $_REQUEST['plugin'] ) ));
    268268
    269269    if ( is_wp_error($api) )
     
    296296    }
    297297
    298     $section = isset($_REQUEST['section']) ? wp_unslash( $_REQUEST['section'] ) : 'description'; //Default to the Description tab, Do not translate, API returns English.
     298    $section = isset($_REQUEST['section']) ? stripslashes( $_REQUEST['section'] ) : 'description'; //Default to the Description tab, Do not translate, API returns English.
    299299    if ( empty($section) || ! isset($api->sections[ $section ]) )
    300300        $section = array_shift( $section_titles = array_keys((array)$api->sections) );
Note: See TracChangeset for help on using the changeset viewer.