mirror of
https://github.com/WordPress/WordPress.git
synced 2024-12-22 17:18:32 +01:00
Properly sanitize e-mail addresses in wp-mail.php. Props giannis1. fixes #5169 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@6212 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
a8ede71d87
commit
1b7798d214
@ -63,9 +63,8 @@ for ($i=1; $i <= $count; $i++) :
|
||||
// Set the author using the email address (To or Reply-To, the last used)
|
||||
// otherwise use the site admin
|
||||
if (preg_match('/From: /', $line) | preg_match('/Reply-To: /', $line)) {
|
||||
$author=trim($line);
|
||||
if ( ereg("([a-zA-Z0-9\_\-\.]+@[\a-zA-z0-9\_\-\.]+)", $author , $regs) ) {
|
||||
$author = $regs[1];
|
||||
$author = sanitize_email($line);
|
||||
if ( is_email($author) ) {
|
||||
echo "Author = {$author} <p>";
|
||||
$author = $wpdb->escape($author);
|
||||
$result = $wpdb->get_row("SELECT ID FROM $wpdb->users WHERE user_email='$author' LIMIT 1");
|
||||
|
Loading…
Reference in New Issue
Block a user