[wp-trac] [WordPress Trac] #12280: ^ is an escape char in the windows OS
WordPress Trac
wp-trac at lists.automattic.com
Thu Feb 18 23:05:47 UTC 2010
#12280: ^ is an escape char in the windows OS
--------------------------+-------------------------------------------------
Reporter: hakre | Owner: ryan
Type: defect (bug) | Status: new
Priority: normal | Milestone: 3.0
Component: Security | Version: 3.0
Severity: normal | Keywords: has-patch
--------------------------+-------------------------------------------------
It should be removed from filenames then, otherwise the
{{{sanitize_file_name}}} function could be easily tricked on windows
servers.
Related: #9416, [11178]
--
Ticket URL: <http://core.trac.wordpress.org/ticket/12280>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list