sergiotarxz
/
Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Unescape user data before sending to wpdb::update() and wpdb::insert(), which expect unescaped data. 

git-svn-id: https://develop.svn.wordpress.org/trunk@6656 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Ryan Boren 2008-01-25 02:21:59 +00:00
parent 548903b49d
commit f1140ae187
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
wp-includes/registration.php
View File

@ -158,6 +158,7 @@ function wp_insert_user($userdata) {
$user_registered = gmdate('Y-m-d H:i:s');
$data = compact( 'user_pass', 'user_email', 'user_url', 'user_nicename', 'display_name', 'user_registered' );
$data = stripslashes_deep( $data );
if ( $update ) {
$wpdb->update( $wpdb->users, $data, compact( 'ID' ) );