Make WordPress Core

Opened 5 years ago

Last modified 5 years ago

#45714 new defect (bug)

Allow all valid email formats when editing accounts in the dashboard

Reported by: chrisl27's profile chrisl27 Owned by:
Milestone: Awaiting Review Priority: normal
Severity: normal Version:
Component: Users Keywords: has-patch has-unit-tests
Focuses: administration Cc:


When updating an email address in the dashboard wp-admin/includes/user.php:80 uses sanitize_text_field which strips out a substring like "%ed" even though that is valid in the local part of an email address. Eg, the valid email address "user%edition@…" is saved as "userition@…".

This ticket requests to using sanitize_email instead, similar to the REST API that checks using is_email.

(A related, fixed issue is in #18039 which also recommended using sanitize_email)

Attachments (1)

45714.patch (2.3 KB) - added by chrisl27 5 years ago.

Download all attachments as: .zip

Change History (3)

5 years ago


#1 @chrisl27
5 years ago

  • Keywords has-patch has-unit-tests added

#2 @pento
5 years ago

  • Version trunk deleted
Note: See TracTickets for help on using tickets.