Author: ezyang
Description:
We all know that magic_quotes_gpc is quite evil, but most of us have made some
gpc cleaners and hope for the best. MediaWiki's GPC cleaner does not clean array
values correctly: it mishandles url arrays. For instance: submitting
value[key's] will be returned as value[key\'s].
This behavior is extensively documented at the PHP manual here:
http://us3.php.net/manual/en/function.get-magic-quotes-gpc.php
I understand magic_quotes compatibility is not of utmost concern because
MediaWiki is primarily an in-house application, and magic_quotes is probably
disabled on all your servers. Furthermore, MediaWiki rarely uses arrays in
posts, mitigating the problem further. However, for extension authors, this can
cause some hard to diagnose problems.
I'll be understanding if this is marked WONTFIX, and I'm working on a patch. Thanks.
Version: 1.5.x
Severity: normal