- $dbname = trim($_POST['dbname']);
- $uname = trim($_POST['uname']);
- $passwrd = trim($_POST['pwd']);
- $dbhost = trim($_POST['dbhost']);
- $prefix = trim($_POST['prefix']);
- if ( empty($prefix) )
- $prefix = 'wp_';
-
- // Validate $prefix: it can only contain letters, numbers and underscores
+ load_default_textdomain( $language );
+ $GLOBALS['wp_locale'] = new WP_Locale();
+
+ $dbname = trim( wp_unslash( $_POST[ 'dbname' ] ) );
+ $uname = trim( wp_unslash( $_POST[ 'uname' ] ) );
+ $pwd = trim( wp_unslash( $_POST[ 'pwd' ] ) );
+ $dbhost = trim( wp_unslash( $_POST[ 'dbhost' ] ) );
+ $prefix = trim( wp_unslash( $_POST[ 'prefix' ] ) );
+
+ $step_1 = 'setup-config.php?step=1';
+ $install = 'install.php';
+ if ( isset( $_REQUEST['noapi'] ) ) {
+ $step_1 .= '&noapi';
+ }
+
+ if ( ! empty( $language ) ) {
+ $step_1 .= '&language=' . $language;
+ $install .= '?language=' . $language;
+ } else {
+ $install .= '?language=en_US';
+ }
+
+ $tryagain_link = '</p><p class="step"><a href="' . $step_1 . '" onclick="javascript:history.go(-1);return false;" class="button button-large">' . __( 'Try again' ) . '</a>';
+
+ if ( empty( $prefix ) )
+ wp_die( __( '<strong>ERROR</strong>: "Table Prefix" must not be empty.' . $tryagain_link ) );
+
+ // Validate $prefix: it can only contain letters, numbers and underscores.