mirror_php/wordpress
1
0
Fork 0
mirror of git://develop.git.wordpress.org/ synced 2025-01-17 12:58:25 +01:00
Code Issues Actions 98 Packages Projects Releases Wiki Activity

escape before extracting. Props Alexander Concha.

Browse Source 
git-svn-id: https://develop.svn.wordpress.org/branches/2.0@5768 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Mark Jaquith 2007-06-27 08:22:02 +00:00
parent 99eb567701
commit fd3b1e8bb0
2 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
wp-includes/version.php
View File

@ -2,7 +2,7 @@
// This just holds the version number, in a separate file so we can bump it without cluttering the SVN // This just holds the version number, in a separate file so we can bump it without cluttering the SVN
$wp_version = '2.0.11-RC4'; $wp_version = '2.0.11-RC5';
$wp_db_version = 3441; $wp_db_version = 3441;
?> ?>

4
xmlrpc.php
View File

@ -431,7 +431,7 @@ class wp_xmlrpc_server extends IXR_Server {
if ( !current_user_can('edit_post', $post_ID) ) if ( !current_user_can('edit_post', $post_ID) )
return new IXR_Error(401, 'Sorry, you do not have the right to edit this post.'); return new IXR_Error(401, 'Sorry, you do not have the right to edit this post.');
extract($actual_post); extract($actual_post, EXTR_SKIP);
if ( ('publish' == $post_status) && !current_user_can('publish_posts') ) if ( ('publish' == $post_status) && !current_user_can('publish_posts') )
return new IXR_Error(401, 'Sorry, you do not have the right to publish this post.'); return new IXR_Error(401, 'Sorry, you do not have the right to publish this post.');
@ -597,8 +597,8 @@ class wp_xmlrpc_server extends IXR_Server {
return new IXR_Error(401, 'Sorry, you can not edit this post.'); return new IXR_Error(401, 'Sorry, you can not edit this post.');
$postdata = wp_get_single_post($post_ID, ARRAY_A); $postdata = wp_get_single_post($post_ID, ARRAY_A);
extract($postdata);
$this->escape($postdata); $this->escape($postdata);
extract($postdata, EXTR_SKIP);
$post_title = $content_struct['title']; $post_title = $content_struct['title'];
$post_content = apply_filters( 'content_save_pre', $content_struct['description'] ); $post_content = apply_filters( 'content_save_pre', $content_struct['description'] );