Escape before passing to insert/update post. Props hailin. fixes #9199 for 2.7

git-svn-id: http://svn.automattic.com/wordpress/branches/2.7@10621 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
ryan 2009-02-22 00:36:00 +00:00
parent 7a92c50bf0
commit 219ce056c2

View File

@ -3456,7 +3456,8 @@ function _wp_put_post_revision( $post = null, $autosave = false ) {
return new WP_Error( 'post_type', __( 'Cannot create a revision of a revision' ) ); return new WP_Error( 'post_type', __( 'Cannot create a revision of a revision' ) );
$post = _wp_post_revision_fields( $post, $autosave ); $post = _wp_post_revision_fields( $post, $autosave );
$post = add_magic_quotes($post); //since data is from db
$revision_id = wp_insert_post( $post ); $revision_id = wp_insert_post( $post );
if ( is_wp_error($revision_id) ) if ( is_wp_error($revision_id) )
return $revision_id; return $revision_id;
@ -3532,6 +3533,8 @@ function wp_restore_post_revision( $revision_id, $fields = null ) {
return false; return false;
$update['ID'] = $revision['post_parent']; $update['ID'] = $revision['post_parent'];
$update = add_magic_quotes( $update ); //since data is from db
$post_id = wp_update_post( $update ); $post_id = wp_update_post( $update );
if ( is_wp_error( $post_id ) ) if ( is_wp_error( $post_id ) )