Make WordPress Core

Changeset 54522


Ignore:
Timestamp:
10/17/2022 11:02:06 AM (21 months ago)
Author:
audrasjb
Message:

General: Validate host on "Are you sure?" screen.

Props voldemortensen, xknown, peterwiloncc.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/wp-includes/functions.php

    r54476 r54522  
    35853585        $html = __( 'The link you followed has expired.' );
    35863586        if ( wp_get_referer() ) {
     3587            $wp_http_referer = remove_query_arg( 'updated', wp_get_referer() );
     3588            $wp_http_referer = wp_validate_redirect( esc_url_raw( $wp_http_referer ) );
    35873589            $html .= '</p><p>';
    35883590            $html .= sprintf(
    35893591                '<a href="%s">%s</a>',
    3590                 esc_url( remove_query_arg( 'updated', wp_get_referer() ) ),
     3592                esc_url( $wp_http_referer ),
    35913593                __( 'Please try again.' )
    35923594            );
Note: See TracChangeset for help on using the changeset viewer.