XML-RPC: Fix length validation of anonymous commenter's email address.

Fix the first step of validating an anonymous commenters in which the length is checked prior to running regular expressions. Follow up to [47808]. Merges [49271] to the 5.5 branch. Fixes #51595. Built from https://develop.svn.wordpress.org/branches/5.5@49273 git-svn-id: http://core.svn.wordpress.org/branches/5.5@49035 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2025-02-20 13:38:37 +00:00 · 2020-10-22 02:47:07 +00:00 · 2020-10-22 02:47:07 +00:00 · 59ca490c66
commit 59ca490c66
parent f7533ee854
2 changed files with 2 additions and 2 deletions
--- a/wp-includes/class-wp-xmlrpc-server.php
+++ b/wp-includes/class-wp-xmlrpc-server.php
@ -3912,7 +3912,7 @@ class wp_xmlrpc_server extends IXR_Server {
 			$comment['user_ID'] = 0;

 			if ( get_option( 'require_name_email' ) ) {
-				if ( strlen( $comment['comment_author_email'] < 6 ) || '' === $comment['comment_author'] ) {
+				if ( strlen( $comment['comment_author_email'] ) < 6 || '' === $comment['comment_author'] ) {
 					return new IXR_Error( 403, __( 'Comment author name and email are required.' ) );
 				} elseif ( ! is_email( $comment['comment_author_email'] ) ) {
 					return new IXR_Error( 403, __( 'A valid email address is required.' ) );
--- a/wp-includes/version.php
+++ b/wp-includes/version.php
@ -13,7 +13,7 @@
 *
 * @global string $wp_version
 */
-$wp_version = '5.5.2-alpha-49191';
+$wp_version = '5.5.2-alpha-49273';

 /**
 * Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema.