Changeset 1226

Show
Ignore:
Timestamp:
04/10/08 15:26:28 (7 months ago)
Author:
donncha
Message:

weblog_title gets passed to update_option() eventually which expects unescaped values

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/index-install.php

    r1218 r1226  
    367367        if( $email == '' ) 
    368368                die( 'You must enter an email address!' ); 
    369         $weblog_title = $wpdb->escape( $_POST[ 'weblog_title' ] ); 
     369        $weblog_title = stripslashes( $_POST[ 'weblog_title' ] ); 
    370370 
    371371        // set up site tables