- Timestamp:
- 03/06/2017 01:37:43 PM (8 years ago)
- Location:
- trunk
- Files:
-
- 2 edited
-
src/wp-includes/pluggable.php (modified) (1 diff)
-
tests/phpunit/tests/formatting/redirect.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
trunk/src/wp-includes/pluggable.php
r39691 r40183 1294 1294 **/ 1295 1295 function wp_validate_redirect($location, $default = '') { 1296 $location = trim( $location );1296 $location = trim( $location, " \t\n\r\0\x08\x0B" ); 1297 1297 // browsers will assume 'http' is your protocol, and will obey a redirect to a URL starting with '//' 1298 1298 if ( substr($location, 0, 2) == '//' ) -
trunk/tests/phpunit/tests/formatting/redirect.php
r36444 r40183 60 60 array( 'http://user:@example.com/', 'http://user:@example.com/' ), 61 61 array( 'http://user:pass@example.com/', 'http://user:pass@example.com/' ), 62 array( " \t\n\r\0\x08\x0Bhttp://example.com", 'http://example.com' ), 63 array( " \t\n\r\0\x08\x0B//example.com", 'http://example.com' ), 62 64 ); 63 65 } … … 71 73 // non-safelisted domain 72 74 array( 'http://non-safelisted.example/' ), 75 76 // non-safelisted domain (leading whitespace) 77 array( " \t\n\r\0\x08\x0Bhttp://non-safelisted.example.com" ), 78 array( " \t\n\r\0\x08\x0B//non-safelisted.example.com" ), 73 79 74 80 // unsupported schemes
Note: See TracChangeset
for help on using the changeset viewer.