Upstream/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2025-01-31 04:31:35 +01:00
Code Issues Projects Releases Wiki Activity

Require active plugin files to end in .php. Props hakre. fixes #9406

Browse Source 
git-svn-id: http://svn.automattic.com/wordpress/trunk@10892 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
ryan 2009-04-08 18:34:46 +00:00
parent 8ebd22ee98
commit 62374e5c72
1 changed files with 14 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
wp-settings.php
View File

@ -512,16 +512,22 @@ if ( get_option('hack_file') ) {
require(ABSPATH . 'my-hacks.php');
}
if ( get_option('active_plugins') && !defined('WP_INSTALLING') ) {
$current_plugins = get_option('active_plugins');
if ( is_array($current_plugins) ) {
foreach ( $current_plugins as $plugin ) {
if ( '' != $plugin && 0 == validate_file($plugin) && file_exists(WP_PLUGIN_DIR . '/' . $plugin) )
include_once(WP_PLUGIN_DIR . '/' . $plugin);
}
unset($plugin);
$current_plugins = get_option('active_plugins');
if ( is_array($current_plugins) && !defined('WP_INSTALLING') ) {
foreach ( $current_plugins as $plugin ) {
// check the $plugin filename
// Validate plugin filename
if ( validate_file($plugin) // $plugin must validate as file
|| '.php' != substr($plugin, -4) // $plugin must end with '.php'
|| !file_exists(WP_PLUGIN_DIR . '/' . $plugin) // $plugin must exist
)
continue;
include_once(WP_PLUGIN_DIR . '/' . $plugin);
}
unset($plugin);
}
unset($current_plugins);
require (ABSPATH . WPINC . '/pluggable.php');