[wp-testers] Single quotes in user_login gives MySQL errors
Matt Mullenweg
m at mullenweg.com
Thu Jan 5 19:36:09 GMT 2006
Jamie Talbot wrote:
> Having a single quote in a user_login, in my case "Jamie's Keitai",
> breaks the MySQL query in get_userdatabylogin() in the latest changeset.
> Adding slashes to sanitize_user() seems to work to fix that. Will this
> break anything else?
I thought we were sanitizing usernames to be pretty tame and not allow
junk like apostrophes and spaces?
--
Matt Mullenweg
http://photomatt.net | http://wordpress.org
http://pingomatic.com | http://akismet.com
More information about the wp-testers
mailing list