X-Git-Url: https://scripts.mit.edu/gitweb/autoinstalls/wordpress.git/blobdiff_plain/baca9ce86a38dc54c4574890ee2d352fd81f78b2..11be15bd505d66a91e2c80062190b13e315a04a9:/wp-admin/upgrade.php
diff --git a/wp-admin/upgrade.php b/wp-admin/upgrade.php
index 9a632ef0..b0428773 100644
--- a/wp-admin/upgrade.php
+++ b/wp-admin/upgrade.php
@@ -58,7 +58,7 @@ else
?>
-
+
@@ -77,7 +77,7 @@ else
@@ -90,7 +90,7 @@ switch ( $step ) :
case 1:
wp_upgrade();
- $backto = !empty($_GET['backto']) ? stripslashes( urldecode( $_GET['backto'] ) ) : __get_option( 'home' ) . '/';
+ $backto = !empty($_GET['backto']) ? wp_unslash( urldecode( $_GET['backto'] ) ) : __get_option( 'home' ) . '/';
$backto = esc_url( $backto );
$backto = wp_validate_redirect($backto, __get_option( 'home' ) . '/');
?>