Assume that url_shorten() receives unslashed data, as it does in core usage. see #21767.

git-svn-id: https://develop.svn.wordpress.org/trunk@23575 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Andrew Nacin 2013-03-01 17:56:31 +00:00
parent d7a010a66e
commit 0d54b5febe
1 changed files with 1 additions and 2 deletions

View File

@ -220,8 +220,7 @@ add_action( 'update_option_page_on_front', 'update_home_siteurl', 10, 2 );
* @return string * @return string
*/ */
function url_shorten( $url ) { function url_shorten( $url ) {
$short_url = str_replace( 'http://', '', wp_unslash( $url )); $short_url = str_replace( array( 'http://', 'www.' ), '', $short_url );
$short_url = str_replace( 'www.', '', $short_url );
$short_url = untrailingslashit( $short_url ); $short_url = untrailingslashit( $short_url );
if ( strlen( $short_url ) > 35 ) if ( strlen( $short_url ) > 35 )
$short_url = substr( $short_url, 0, 32 ) . '...'; $short_url = substr( $short_url, 0, 32 ) . '...';