Changeset 23567 for trunk/wp-admin/plugin-editor.php
- Timestamp:
- 03/01/2013 05:14:09 PM (12 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/wp-admin/plugin-editor.php
r23554 r23567 29 29 30 30 if ( isset($_REQUEST['file']) ) 31 $plugin = stripslashes($_REQUEST['file']);31 $plugin = wp_unslash($_REQUEST['file']); 32 32 33 33 if ( empty($plugin) ) { … … 40 40 if ( empty($file) ) 41 41 $file = $plugin_files[0]; 42 else43 $file = stripslashes($file);44 42 45 43 $file = validate_file_to_edit($file, $plugin_files); … … 53 51 check_admin_referer('edit-plugin_' . $file); 54 52 55 $newcontent = stripslashes($_POST['newcontent']);53 $newcontent = wp_unslash( $_POST['newcontent'] ); 56 54 if ( is_writeable($real_file) ) { 57 55 $f = fopen($real_file, 'w+');
Note: See TracChangeset
for help on using the changeset viewer.