- Timestamp:
- 09/10/2013 06:06:43 PM (11 years ago)
- Location:
- trunk/src/wp-includes
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/src/wp-includes/functions.php
r25317 r25318 1297 1297 1298 1298 if ( $ref && $ref !== wp_unslash( $_SERVER['REQUEST_URI'] ) ) 1299 return wp_ unslash( $ref);1299 return wp_validate_redirect( $ref, false ); 1300 1300 return false; 1301 1301 } … … 1312 1312 function wp_get_original_referer() { 1313 1313 if ( !empty( $_REQUEST['_wp_original_http_referer'] ) ) 1314 return wp_ unslash( $_REQUEST['_wp_original_http_referer']);1314 return wp_validate_redirect( wp_unslash( $_REQUEST['_wp_original_http_referer'] ), false ); 1315 1315 return false; 1316 1316 } -
trunk/src/wp-includes/pluggable.php
r25273 r25318 965 965 **/ 966 966 function wp_validate_redirect($location, $default = '') { 967 $location = trim( $location ); 967 968 // browsers will assume 'http' is your protocol, and will obey a redirect to a URL starting with '//' 968 969 if ( substr($location, 0, 2) == '//' )
Note: See TracChangeset
for help on using the changeset viewer.