[wp-hackers] Re: [wp-svn] [3939]
trunk/wp-includes/pluggable.php: Allow % so entities such as
slashes don't break.
Computer Guru
computerguru at neosmart.net
Fri Jun 30 07:10:48 GMT 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Not so: Admin URLs contain the names of plugins, which aren’t always
judiciously named.
Computer Guru
NeoSmart Technologies
http://neosmart.net/blog/
-----BEGIN PGP SIGNATURE-----
iQA/AwUBRKTOb90iAoeFylLdEQIixACeNUsM6gc589OvmGZNFQPZ2hsb56AAoMgQ
KUoKOFM4ctLNftmbs7rS02gP
=BsTj
-----END PGP SIGNATURE-----
-----Original Message-----
I think we can whitelist since wp_redirect() is limited to admin URIs.
I don't think it needs to be able to handle arbitrary URLs or encoded i18n.
Ryan
_______________________________________________
wp-hackers mailing list
wp-hackers at lists.automattic.com
http://lists.automattic.com/mailman/listinfo/wp-hackers
More information about the wp-hackers
mailing list