check for a match against a lowercase host in wp_safe_redirect(). props BoltClock. fixes #5114 for trunk

git-svn-id: http://svn.automattic.com/wordpress/trunk@6219 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-10 19:25:23 +00:00 · 2007-10-10 19:25:23 +00:00 · dec5db7586
parent 40a2a02cb1
commit dec5db7586
1 changed files with 1 additions and 1 deletions
--- a/wp-includes/pluggable.php
+++ b/wp-includes/pluggable.php
@ -437,7 +437,7 @@ function wp_safe_redirect($location, $status = 302) {

 	$allowed_hosts = (array) apply_filters('allowed_redirect_hosts', array($wpp['host']), $lp['host']);

-	if ( isset($lp['host']) && !in_array($lp['host'], $allowed_hosts) )
+	if ( isset($lp['host']) && ( !in_array($lp['host'], $allowed_hosts) && $lp['host'] != strtolower($wpp['host'])) )
 		$location = get_option('siteurl') . '/wp-admin/';

 	wp_redirect($location, $status);