[wp-testers] Single quotes in user_login gives MySQL errors

[Matt Mullenweg]

Jamie Talbot wrote:
> Having a single quote in a user_login, in my case "Jamie's Keitai",
> breaks the MySQL query in get_userdatabylogin() in the latest changeset.
>  Adding slashes to sanitize_user() seems to work to fix that.  Will this
> break anything else?

I thought we were sanitizing usernames to be pretty tame and not allow 
junk like apostrophes and spaces?

-- 
Matt Mullenweg
  http://photomatt.net | http://wordpress.org
http://pingomatic.com | http://akismet.com