[wp-trac] [WordPress Trac] #9640: wp_update_user() blindly calls add_magic_quotes(), even on objects

WordPress Trac wp-trac at lists.automattic.com
Tue Aug 11 12:18:07 UTC 2009


#9640: wp_update_user() blindly calls add_magic_quotes(), even on objects
--------------------------+-------------------------------------------------
 Reporter:  misterbisson  |        Owner:          
     Type:  defect (bug)  |       Status:  reopened
 Priority:  normal        |    Milestone:  2.9     
Component:  Users         |      Version:  2.8     
 Severity:  normal        |   Resolution:          
 Keywords:  needs-patch   |  
--------------------------+-------------------------------------------------

Comment(by prettyboymp):

 Looks like several issues are all thrown into this one problem with the
 way the _escape is handled.  The issue is that there may be times where a
 function passes in an object and want's the object's vars escaped and
 other times where an array with an object in it may be passed in where the
 object needs to be serialized (serialized objects in usermeta).  I'm
 curious of what occasions come up where the escape/add_magic_quotes
 functions need to be recursive.

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/9640#comment:29>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list