From 722cbee7b6ff308be88e989a591756b88b6c61ab Mon Sep 17 00:00:00 2001 From: Ryan Boren Date: Sun, 22 May 2011 23:23:57 +0000 Subject: [PATCH] Make sure ext passes through sanitize_file_name() git-svn-id: https://develop.svn.wordpress.org/trunk@17998 602fd350-edb4-49c9-b593-d223f7449a82 --- wp-app.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/wp-app.php b/wp-app.php index a05b01d9b4..68e96d4369 100644 --- a/wp-app.php +++ b/wp-app.php @@ -607,13 +607,13 @@ EOD; $slug = ''; if ( isset( $_SERVER['HTTP_SLUG'] ) ) - $slug = sanitize_file_name( $_SERVER['HTTP_SLUG'] ); + $slug = $_SERVER['HTTP_SLUG']; elseif ( isset( $_SERVER['HTTP_TITLE'] ) ) - $slug = sanitize_file_name( $_SERVER['HTTP_TITLE'] ); + $slug = $_SERVER['HTTP_TITLE']; elseif ( empty( $slug ) ) // just make a random name $slug = substr( md5( uniqid( microtime() ) ), 0, 7); $ext = preg_replace( '|.*/([a-z0-9]+)|', '$1', $_SERVER['CONTENT_TYPE'] ); - $slug = "$slug.$ext"; + $slug = sanitize_file_name( "$slug.$ext" ); $file = wp_upload_bits( $slug, NULL, $bits); log_app('wp_upload_bits returns:',print_r($file,true));