Changeset 1372

Show
Ignore:
Timestamp:
07/11/08 15:05:19 (5 months ago)
Author:
donncha
Message:

Make sure username and blogname are alphanumeric only, fixes #523

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/wp-admin/wpmu-edit.php

    r1361 r1372  
    9696 
    9797                $blog = $_POST['blog']; 
    98                 $domain = strtolower( wp_specialchars( $blog['domain'] ) ); 
     98                $domain = ereg_replace("[^A-Za-z0-9]", "", strtolower( wp_specialchars( $blog['domain'] ) ) ); 
    9999                $email = wp_specialchars( $blog['email'] ); 
    100100                $title = stripslashes( wp_specialchars( $blog['title'] ) ); 

  • trunk/wp-includes/wpmu-functions.php

    r1371 r1372  
    11241124 
    11251125function wpmu_create_user( $user_name, $password, $email) { 
     1126        $user_name = ereg_replace("[^A-Za-z0-9]", "", $user_name); 
    11261127        if ( username_exists($user_name) ) 
    11271128                return false;