Make WordPress Core


Ignore:
Timestamp:
05/16/2023 02:16:39 PM (19 months ago)
Author:
audrasjb
Message:

I18N: Introduce sanitization function for locale.

Introduce the sanitize_locale_name() for sanitizing user input of locales.

Props xknown, timothyblynjacobs, ocean90, peterwilsoncc.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/wp-includes/l10n.php

    r55703 r55760  
    150150
    151151    if ( ! empty( $_GET['wp_lang'] ) ) {
    152         $wp_lang = sanitize_text_field( $_GET['wp_lang'] );
     152        $wp_lang = sanitize_locale_name( wp_unslash( $_GET['wp_lang'] ) );
    153153    } elseif ( ! empty( $_COOKIE['wp_lang'] ) ) {
    154         $wp_lang = sanitize_text_field( $_COOKIE['wp_lang'] );
     154        $wp_lang = sanitize_locale_name( wp_unslash( $_COOKIE['wp_lang'] ) );
    155155    }
    156156
Note: See TracChangeset for help on using the changeset viewer.