Skip to:
Content

bbPress.org

Changeset 5590


Ignore:
Timestamp:
01/10/2015 10:57:25 PM (10 years ago)
Author:
johnjamesjacoby
Message:

Use sanitize_user() in bbp_user_maybe_convert_pass() to ensure user login is within expected boundaries. See #2742.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/includes/users/functions.php

    r5486 r5590  
    18331833function bbp_user_maybe_convert_pass() {
    18341834
     1835    // Sanitize username
     1836    $username = ! empty( $_POST['log'] )
     1837        ? sanitize_user( $_POST['log'] )
     1838        : '';
     1839
    18351840    // Bail if no username
    1836     $username = ! empty( $_POST['log'] ) ? $_POST['log'] : '';
    18371841    if ( empty( $username ) ) {
    18381842        return;
Note: See TracChangeset for help on using the changeset viewer.