Changeset 41427 for branches/3.8/src

Timestamp:

09/19/2017 11:10:52 AM (9 years ago)

Author:

ocean90

Message:

Users: Provide a fallback for incorrect HTTP referrers.

Merge of [41398] to the 3.8 branch.

Location:

branches/3.8

Files:

• . (modified) (1 prop)
• src/wp-admin/user-edit.php (modified) (1 diff)

branches/3.8/src/wp-admin/user-edit.php

@@ -203 +203 @@
     <?php endif; ?>
     <?php if ( $wp_http_referer && !IS_PROFILE_PAGE ) : ?>
-    <p><a href="<?php echo esc_url( $wp_http_referer ); ?>"><?php _e('&larr; Back to Users'); ?></a></p>
+    <p><a href="<?php echo esc_url( wp_validate_redirect( wp_sanitize_redirect( $wp_http_referer ), self_admin_url( 'users.php' ) ) ); ?>"><?php _e('&larr; Back to Users'); ?></a></p>
     <?php endif; ?>
 </div>