MantisBT: master 7cd2fa56

Author Committer Branch Timestamp Parent
dregad dregad master 2015-04-16 14:34 master bc195dd5
Affected Issues  0017280: Email address validation function strips characters
Changeset

Don't sanitize user email prior to validation

Before this, email_is_valid() validated a sanitized string (using
filter_var() with FILTER_SANITIZE_EMAIL).

We now validate the email exactly as it was entered by the user to
ensure we don't accept an address that was actually made valid by the
sanitization itself.

Fixes 0017280

mod - core/email_api.php Diff File