diff options
author | donncha <donncha@7be80a69-a1ef-0310-a953-fb0f7c49ff36> | 2008-07-11 15:05:19 +0000 |
---|---|---|
committer | donncha <donncha@7be80a69-a1ef-0310-a953-fb0f7c49ff36> | 2008-07-11 15:05:19 +0000 |
commit | 71035d5d0ed13cc388f1c729d7b8fab8b321038c (patch) | |
tree | 4d07566276cf74c3a51a890f76a67dee2398d251 | |
parent | ec133cb599d7710db7dd712b86c5117285d333df (diff) | |
download | wordpress-mu-71035d5d0ed13cc388f1c729d7b8fab8b321038c.tar.gz wordpress-mu-71035d5d0ed13cc388f1c729d7b8fab8b321038c.tar.xz wordpress-mu-71035d5d0ed13cc388f1c729d7b8fab8b321038c.zip |
Make sure username and blogname are alphanumeric only, fixes #523
git-svn-id: http://svn.automattic.com/wordpress-mu/trunk@1372 7be80a69-a1ef-0310-a953-fb0f7c49ff36
-rw-r--r-- | wp-admin/wpmu-edit.php | 2 | ||||
-rw-r--r-- | wp-includes/wpmu-functions.php | 1 |
2 files changed, 2 insertions, 1 deletions
diff --git a/wp-admin/wpmu-edit.php b/wp-admin/wpmu-edit.php index 234006c..7945e0c 100644 --- a/wp-admin/wpmu-edit.php +++ b/wp-admin/wpmu-edit.php @@ -95,7 +95,7 @@ switch( $_GET['action'] ) { check_admin_referer('add-blog'); $blog = $_POST['blog']; - $domain = strtolower( wp_specialchars( $blog['domain'] ) ); + $domain = ereg_replace("[^A-Za-z0-9]", "", strtolower( wp_specialchars( $blog['domain'] ) ) ); $email = wp_specialchars( $blog['email'] ); $title = stripslashes( wp_specialchars( $blog['title'] ) ); diff --git a/wp-includes/wpmu-functions.php b/wp-includes/wpmu-functions.php index 862f893..f30f986 100644 --- a/wp-includes/wpmu-functions.php +++ b/wp-includes/wpmu-functions.php @@ -1123,6 +1123,7 @@ function generate_random_password( $len = 8 ) { } function wpmu_create_user( $user_name, $password, $email) { + $user_name = ereg_replace("[^A-Za-z0-9]", "", $user_name); if ( username_exists($user_name) ) return false; |