Ticket #625: Ticket-625.patch
| File Ticket-625.patch, 1.4 KB (added by so1o, 5 years ago) |
|---|
-
bb-admin/plugins.php
13 13 } 14 14 15 15 if ( isset($_GET['action']) ) { 16 $plugin = stripslashes(trim($_GET['plugin']));16 $plugin = trim(urldecode($_GET['plugin'])); 17 17 if ('activate' == $_GET['action']) { 18 18 bb_check_admin_referer( 'activate-plugin_' . $plugin ); 19 19 if ( !in_array($plugin, array_keys($plugins)) ) -
bb-admin/themes.php
7 7 exit; 8 8 } 9 9 bb_check_admin_referer( 'switch-theme' ); 10 $activetheme = stripslashes($_GET['theme']);10 $activetheme = urldecode($_GET['theme']); 11 11 bb_update_option( 'bb_active_theme', $activetheme ); 12 12 wp_redirect( bb_get_option( 'uri' ) . 'bb-admin/themes.php?activated' ); 13 13 exit; -
bb-includes/functions.php
2086 2086 else 2087 2087 return false; 2088 2088 2089 $r = str_replace(array('//', '\\\\' ), array('/', '\\'), $r);2089 $r = str_replace(array('//', '\\\\', '\\'), array('/', '\\', '/'), $r); 2090 2090 $r = preg_replace('|:/([^/])|', '://$1', $r); 2091 2091 2092 2092 return $r;
