[wp-trac] [WordPress Trac] #16788: Ampersands in e-mail address become invalid
WordPress Trac
wp-trac at lists.automattic.com
Mon Mar 7 20:01:38 UTC 2011
#16788: Ampersands in e-mail address become invalid
--------------------------+-----------------------------
Reporter: jfarthing84 | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Users | Version: 3.0.5
Severity: major | Keywords: dev-feedback
--------------------------+-----------------------------
When an e-mail address contains an ampersand, WordPress improperly escapes
the ampersand invalidating the e-mail address.
Example: h&f at domain.com becomes h&amp at domain.com
First of all, the proper HTML entity for "&" is '''&'''. Where did the
extra '''amp''' come from?
Also, an ampersand is a valid character in an e-mail address and should
not be escaped. Escaping it could be a completely different e-mail
address.
I have not dug into the code to find out where this is happening but I'd
assume in '''sanitize_email()'''.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/16788>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list