sergiotarxz/Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Do only the minimum sanitization on the URL redirect. fixes #2994

Browse Source 
git-svn-id: https://develop.svn.wordpress.org/trunk@4268 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Ryan Boren 2006-10-02 19:26:12 +00:00
parent 24cd5df33c
commit 384b956cc1
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
wp-admin/theme-editor.php
View File

@ -44,11 +44,15 @@ case 'update':
$f = fopen($real_file, 'w+');
fwrite($f, $newcontent);
fclose($f);
wp_redirect("theme-editor.php?file=$file&theme=$theme&a=te");
$location = "theme-editor.php?file=$file&theme=$theme&a=te";
} else {
wp_redirect("theme-editor.php?file=$file&theme=$theme");
$location = "theme-editor.php?file=$file&theme=$theme";
}
$location = wp_kses_no_null($location);
$strip = array('%0d', '%0a');
$location = str_replace($strip, '', $location);
header("Location: $location");
exit();
break;