Opened 14 years ago
Closed 13 years ago
#14516 closed defect (bug) (duplicate)
Must stripslash input fields for db install
Reported by: | johanee | Owned by: | |
---|---|---|---|
Milestone: | Priority: | normal | |
Severity: | normal | Version: | 3.0.1 |
Component: | Upgrade/Install | Keywords: | has-patch |
Focuses: | Cc: |
Description
During WordPress database install we must stripslash the input fields.
For database name, database username and database password \, ', and " are valid characters. For dbhost "strange" characters probably aren't valid, but we should handle it correctly anyway.
For prefix there is no need to stripslash as we immediately make sure it only contains letters, numbers and underscores. (mysql allows other characters, but it is probably wise to limit it anyway).
Attachments (2)
Change History (10)
Note: See
TracTickets for help on using
tickets.
Stripslash input during db install