wp_kses_no_null() redirect location for extra protection.

git-svn-id: https://develop.svn.wordpress.org/trunk@3992 602fd350-edb4-49c9-b593-d223f7449a82
2026-06-28 14:20:15 +00:00 · 2006-07-06 00:28:37 +00:00
parent d75bc044ef
commit 6fd01856c7
1 changed files with 1 additions and 0 deletions
--- a/wp-includes/pluggable.php
+++ b/wp-includes/pluggable.php
@@ -261,6 +261,7 @@ function wp_redirect($location) {
 	global $is_IIS;

 	$location = preg_replace('|[^a-z0-9-~+_.?#=&;,/:%]|i', '', $location);
+	$location = wp_kses_no_null($location);

 	$strip = array('%0d', '%0a');
 	$location = str_replace($strip, '', $location);