[wp-trac] Re: [WordPress Trac] #9640: wp_update_user() blindly calls
add_magic_quotes(), even on objects
WordPress Trac
wp-trac at lists.automattic.com
Wed May 27 14:58:45 GMT 2009
#9640: wp_update_user() blindly calls add_magic_quotes(), even on objects
-----------------------------------+----------------------------------------
Reporter: misterbisson | Owner:
Type: defect (bug) | Status: reopened
Priority: normal | Milestone: Future Release
Component: Users | Version: 2.8
Severity: normal | Resolution:
Keywords: dev-feedback security |
-----------------------------------+----------------------------------------
Comment(by hakre):
Some Note for patch 2: wpdb->escape() is used on the string, should be
add_magic_quotes(). Just for reference, there seems to be no need to
update the patch currently but only in the future.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/9640#comment:23>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list