WordPress-C
/
WordPress
mirror of https://github.com/WordPress/WordPress.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ANTI-SPAM: reject numerically encoded entities that fall in the normal ASCII range 

git-svn-id: http://svn.automattic.com/wordpress/trunk@1844 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
emc3 2004-11-03 14:21:46 +00:00
parent 02db3ad66b
commit 6386e0815c
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
wp-includes/functions.php
View File

@ -1656,6 +1656,16 @@ function check_comment($author, $email, $url, $comment, $user_ip) {
} }
} }
// Useless numeric encoding is a pretty good spam indicator:
// Extract entities:
if (preg_match_all('/&#(\d+);/',$comment,$chars)) {
foreach ($chars[1] as $char) {
// If it's an encoded char in the normal ASCII set, reject
if ($char < 128)
return false;
}
}
$mod_keys = trim( get_settings('moderation_keys') ); $mod_keys = trim( get_settings('moderation_keys') );
if ('' == $mod_keys ) if ('' == $mod_keys )
return true; // If moderation keys are empty return true; // If moderation keys are empty