Ticket #3983: 3983.diff
| File 3983.diff, 0.9 kB (added by rob1n, 2 years ago) |
|---|
-
wp-admin/admin-functions.php
old new 611 611 wp_die( __( 'Cheatin’ uh?' )); 612 612 613 613 $_POST['link_url'] = wp_specialchars( $_POST['link_url'] ); 614 $_POST['link_url'] = preg_match('/^(https?|ftps?|mailto|news|irc|gopher|nntp|feed|telnet):/is', $_POST['link_url']) ? $_POST['link_url'] : 'http://' . $_POST['link_url'];614 $_POST['link_url'] = clean_url($_POST['link_url']); 615 615 $_POST['link_name'] = wp_specialchars( $_POST['link_name'] ); 616 616 $_POST['link_image'] = wp_specialchars( $_POST['link_image'] ); 617 $_POST['link_rss'] = wp_specialchars( $_POST['link_rss']);617 $_POST['link_rss'] = (empty($_POST['link_rss'])) ? '' : clean_url($_POST['link_rss']); 618 618 $_POST['link_category'] = $_POST['post_category']; 619 619 620 620 if ( !empty( $link_id ) ) {
