[wp-trac] [WordPress Trac] #45714: Allow all valid email formats when editing accounts in the dashboard
WordPress Trac
noreply at wordpress.org
Wed Dec 19 22:14:32 UTC 2018
#45714: Allow all valid email formats when editing accounts in the dashboard
----------------------------+-----------------------------
Reporter: chrisl27 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Users | Version: trunk
Severity: normal | Keywords:
Focuses: administration |
----------------------------+-----------------------------
When updating an email address in the dashboard wp-
admin/includes/user.php:80 uses sanitize_text_field which strips out a
substring like "%ed" even though that is valid in the local part of an
email address. Eg, the valid email address "user%edition at site.com" is
saved as "userition at site.com".
This ticket requests to using sanitize_email instead, similar to the REST
API that checks using is_email.
(A related, fixed issue is in #18039 which also recommended using
sanitize_email)
--
Ticket URL: <https://core.trac.wordpress.org/ticket/45714>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list