Changeset 2876
- Timestamp:
- 09/14/2005 08:57:21 PM (20 years ago)
- File:
-
- 1 edited
-
trunk/wp-login.php (modified) (3 diffs)
Legend:
- Unmodified
- Added
- Removed
-
trunk/wp-login.php
r2747 r2876 158 158 $user_login = ''; 159 159 $user_pass = ''; 160 $redirect_to = 'wp-admin/';161 160 $using_cookie = false; 161 if ( !isset( $_REQUEST['redirect_to'] ) ) 162 $redirect_to = 'wp-admin/'; 163 else 164 $redirect_to = $_REQUEST['redirect_to']; 165 $redirect_to = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $redirect_to); 162 166 163 167 if( !empty($_POST) ) { … … 165 169 $user_pass = $_POST['pwd']; 166 170 $rememberme = $_POST['rememberme']; 167 $redirect_to = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $_POST['redirect_to']);168 171 } elseif ( !empty($_COOKIE) ) { 169 172 if (! empty($_COOKIE[USER_COOKIE]) ) … … 195 198 } 196 199 } 197 if ( isset($_REQUEST['redirect_to']) )198 $redirect_to = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $_REQUEST['redirect_to']);199 200 ?> 200 201 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
Note: See TracChangeset
for help on using the changeset viewer.