Add sanitization of option values to add_option. Fixes #5209 props johnbillion.

git-svn-id: http://svn.automattic.com/wordpress/trunk@7445 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2024-06-28 07:45:02 +02:00 · 2008-03-21 08:56:29 +00:00 · 2008-03-21 08:56:29 +00:00 · 6a50d730cb
commit 6a50d730cb
parent 0c733599d4
1 changed files with 2 additions and 0 deletions
--- a/wp-includes/functions.php
+++ b/wp-includes/functions.php
@ -344,6 +344,7 @@ function add_option( $name, $value = '', $deprecated = '', $autoload = 'yes' ) {

 	wp_protect_special_option( $name );
 	$safe_name = $wpdb->escape( $name );
+	$value = sanitize_option( $name, $value );

 	// Make sure the option doesn't already exist. We can check the 'notoptions' cache before we ask for a db query
 	$notoptions = wp_cache_get( 'notoptions', 'options' );
@ -371,6 +372,7 @@ function add_option( $name, $value = '', $deprecated = '', $autoload = 'yes' ) {

 	$wpdb->query( $wpdb->prepare( "INSERT INTO $wpdb->options (option_name, option_value, autoload) VALUES (%s, %s, %s)", $name, $value, $autoload ) );

+	do_action( "add_option_{$name}", $name, $value ); 
 	return;
 }