WordPress.org

Make WordPress Core

Changeset 4269


Ignore:
Timestamp:
10/02/2006 07:26:47 PM (15 years ago)
Author:
ryan
Message:

Do only the minimum sanitization on the URL redirect. fixes #2994

File:
1 edited

Legend:

Unmodified
Added
Removed
  • branches/2.0/wp-admin/theme-editor.php

    r3937 r4269  
    5959        fwrite($f, $newcontent);
    6060        fclose($f);
    61         wp_redirect("theme-editor.php?file=$file&theme=$theme&a=te");
     61        $location = "theme-editor.php?file=$file&theme=$theme&a=te";
    6262    } else {
    63         wp_redirect("theme-editor.php?file=$file&theme=$theme");
     63        $location = "theme-editor.php?file=$file&theme=$theme";
    6464    }
    6565
     66    $location = wp_kses_no_null($location);
     67    $strip = array('%0d', '%0a');
     68    $location = str_replace($strip, '', $location);
     69    header("Location: $location");
    6670    exit();
    6771
Note: See TracChangeset for help on using the changeset viewer.