[wp-cvs] wordpress wp-comments-post.php, 1.15, 1.16 wp-login.php,
1.36, 1.37
Matthew Mullenweg
saxmatt at users.sourceforge.net
Tue Oct 5 08:35:24 UTC 2004
Update of /cvsroot/cafelog/wordpress
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv24258
Modified Files:
wp-comments-post.php wp-login.php
Log Message:
Changes to how we do redirects.
Index: wp-comments-post.php
===================================================================
RCS file: /cvsroot/cafelog/wordpress/wp-comments-post.php,v
retrieving revision 1.15
retrieving revision 1.16
diff -C2 -d -r1.15 -r1.16
*** wp-comments-post.php 4 Oct 2004 08:54:04 -0000 1.15
--- wp-comments-post.php 5 Oct 2004 08:35:22 -0000 1.16
***************
*** 99,102 ****
--- 99,104 ----
header('Pragma: no-cache');
$location = (empty($_POST['redirect_to'])) ? $_SERVER["HTTP_REFERER"] : $_POST['redirect_to'];
+ $location = preg_replace('|[^a-z?=&/~.:_-]|i', '', $location);
+
if ($is_IIS) {
header("Refresh: 0;url=$location");
Index: wp-login.php
===================================================================
RCS file: /cvsroot/cafelog/wordpress/wp-login.php,v
retrieving revision 1.36
retrieving revision 1.37
diff -C2 -d -r1.36 -r1.37
*** wp-login.php 5 Oct 2004 06:45:10 -0000 1.36
--- wp-login.php 5 Oct 2004 08:35:22 -0000 1.37
***************
*** 140,144 ****
$log = $_POST['log'];
$pwd = $_POST['pwd'];
! $redirect_to = preg_replace('|[^a-z/~.:_-]|i', '', $_POST['redirect_to']);
}
--- 140,144 ----
$log = $_POST['log'];
$pwd = $_POST['pwd'];
! $redirect_to = preg_replace('|[^a-z?=&/~.:_-]|i', '', $_POST['redirect_to']);
}
More information about the cvs
mailing list