]> scripts.mit.edu Git - autoinstalls/wordpress.git/blobdiff - wp-admin/network/user-new.php
scripts.mit.edu / autoinstalls / wordpress.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
WordPress 4.1
[autoinstalls/wordpress.git] / wp-admin / network / user-new.php
diff --git a/wp-admin/network/user-new.php b/wp-admin/network/user-new.php
index 29fd63dab5876c1275468208a7b5822328fd06d3..5c671403d520876cd223cdf2608a6a0025ebf668 100644 (file)
--- a/wp-admin/network/user-new.php
+++ b/wp-admin/network/user-new.php
@@ -38,14 +38,14 @@ if ( isset($_REQUEST['action']) && 'add-user' == $_REQUEST['action'] ) {
        if ( ! is_array( $_POST['user'] ) )
                wp_die( __( 'Cannot create an empty user.' ) );
 
-       $user = $_POST['user'];
+       $user = wp_unslash( $_POST['user'] );
 
        $user_details = wpmu_validate_user_signup( $user['username'], $user['email'] );
        if ( is_wp_error( $user_details[ 'errors' ] ) && ! empty( $user_details[ 'errors' ]->errors ) ) {
                $add_user_errors = $user_details[ 'errors' ];
        } else {
                $password = wp_generate_password( 12, false);
-               $user_id = wpmu_create_user( esc_html( strtolower( $user['username'] ) ), $password, esc_html( $user['email'] ) );
+               $user_id = wpmu_create_user( esc_html( strtolower( $user['username'] ) ), $password, sanitize_email( $user['email'] ) );
 
                if ( ! $user_id ) {
                        $add_user_errors = new WP_Error( 'add_user_fail', __( 'Cannot add user.' ) );
WordPress autoinstaller for phpBB