HostForge-Systems/wordpress
Template
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Networks and Sites: Sanitize key parameter in wp-activate.php.

Browse Source 
Props khushipatel15.
Fixes #63320.

Built from https://develop.svn.wordpress.org/trunk@60204


git-svn-id: http://core.svn.wordpress.org/trunk@59540 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
Felix Arntz
2025-04-28 21:12:28 +00:00
parent 2e7eb7070b
commit 1388689a55
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
wp-activate.php
View File

@@ -29,9 +29,9 @@ $result = null;
if ( isset( $_GET['key'] ) && isset( $_POST['key'] ) && $_GET['key'] !== $_POST['key'] ) {
wp_die( __( 'A key value mismatch has been detected. Please follow the link provided in your activation email.' ), __( 'An error occurred during the activation' ), 400 );
} elseif ( ! empty( $_GET['key'] ) ) {
$key = $_GET['key'];
$key = sanitize_text_field( $_GET['key'] );
} elseif ( ! empty( $_POST['key'] ) ) {
$key = $_POST['key'];
$key = sanitize_text_field( $_POST['key'] );
}
if ( $key ) {

2
wp-includes/version.php
View File

@@ -16,7 +16,7 @@
*
* @global string $wp_version
*/
$wp_version = '6.9-alpha-60203';
$wp_version = '6.9-alpha-60204';
/**
* Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema.