Changeset 47962 for branches/3.7/src/wp-includes/pluggable.php
- Timestamp:
- 06/10/2020 06:15:48 PM (5 years ago)
- Location:
- branches/3.7
- Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/3.7
- Property svn:mergeinfo changed
/trunk merged: 47947-47951
- Property svn:mergeinfo changed
-
branches/3.7/src
- Property svn:mergeinfo changed
/trunk/src merged: 47947-47951
- Property svn:mergeinfo changed
-
branches/3.7/src/wp-includes/pluggable.php
r46505 r47962 930 930 **/ 931 931 function wp_sanitize_redirect($location) { 932 $location = preg_replace('|[^a-z0-9-~+_.?#=&;,/:%! ]|i', '', $location);932 $location = preg_replace('|[^a-z0-9-~+_.?#=&;,/:%!@]|i', '', $location); 933 933 $location = wp_kses_no_null($location); 934 934 … … 987 987 **/ 988 988 function wp_validate_redirect($location, $default = '') { 989 $location = trim( $location, " \t\n\r\0\x08\x0B");989 $location = wp_sanitize_redirect( trim( $location, " \t\n\r\0\x08\x0B" ) ); 990 990 // browsers will assume 'http' is your protocol, and will obey a redirect to a URL starting with '//' 991 991 if ( substr($location, 0, 2) == '//' )
Note: See TracChangeset
for help on using the changeset viewer.