WordPress.org

Make WordPress Core

Ticket #17364: 17364.patch

File 17364.patch, 4.1 KB (added by peaceablewhale, 7 years ago)
  • wp-admin/custom-header.php

     
    389389                toggle_text();
    390390                <?php } ?>
    391391                });
     392/* ]]> */
    392393</script>
    393394<?php
    394395        }
  • wp-admin/custom-background.php

     
    237237<input type="hidden" name="action" value="save" />
    238238<?php wp_nonce_field('custom-background-upload', '_wpnonce-custom-background-upload') ?>
    239239<?php submit_button( __( 'Upload' ), 'button', 'submit', false ); ?>
    240 </p>
    241240</form>
    242241</td>
    243242</tr>
  • wp-admin/includes/class-wp-terms-list-table.php

     
    250250                $pad = str_repeat( '&#8212; ', max( 0, $this->level ) );
    251251                $name = apply_filters( 'term_name', $pad . ' ' . $tag->name, $tag );
    252252                $qe_data = get_term( $tag->term_id, $taxonomy, OBJECT, 'edit' );
    253                 $edit_link = get_edit_term_link( $tag->term_id, $taxonomy, $post_type );
     253                $edit_link = esc_url(get_edit_term_link( $tag->term_id, $taxonomy, $post_type ));
    254254
    255255                $out = '<strong><a class="row-title" href="' . $edit_link . '" title="' . esc_attr( sprintf( __( 'Edit &#8220;%s&#8221;' ), $name ) ) . '">' . $name . '</a></strong><br />';
    256256
     
    260260                        $actions['inline hide-if-no-js'] = '<a href="#" class="editinline">' . __( 'Quick&nbsp;Edit' ) . '</a>';
    261261                }
    262262                if ( current_user_can( $tax->cap->delete_terms ) && $tag->term_id != $default_term )
    263                         $actions['delete'] = "<a class='delete-tag' href='" . wp_nonce_url( "edit-tags.php?action=delete&amp;taxonomy=$taxonomy&amp;tag_ID=$tag->term_id", 'delete-tag_' . $tag->term_id ) . "'>" . __( 'Delete' ) . "</a>";
     263                        $actions['delete'] = "<a class='delete-tag' href='" . esc_url( "edit-tags.php?action=delete&amp;taxonomy=$taxonomy&amp;tag_ID=$tag->term_id", 'delete-tag_' . $tag->term_id ) . "'>" . __( 'Delete' ) . "</a>";
    264264
    265265                $actions = apply_filters( 'tag_row_actions', $actions, $tag );
    266266                $actions = apply_filters( "{$taxonomy}_row_actions", $actions, $tag );
     
    269269                $out .= '<div class="hidden" id="inline_' . $qe_data->term_id . '">';
    270270                $out .= '<div class="name">' . $qe_data->name . '</div>';
    271271                $out .= '<div class="slug">' . apply_filters( 'editable_slug', $qe_data->slug ) . '</div>';
    272                 $out .= '<div class="parent">' . $qe_data->parent . '</div></div></td>';
     272                $out .= '<div class="parent">' . $qe_data->parent . '</div></div>';
    273273
    274274                return $out;
    275275        }
     
    300300
    301301                $args['post_type'] = $post_type;
    302302
    303                 return "<a href='" . add_query_arg( $args, 'edit.php' ) . "'>$count</a>";
     303                return "<a href='" . esc_url(add_query_arg( $args, 'edit.php' )) . "'>$count</a>";
    304304        }
    305305
    306306        function column_links( $tag ) {
  • wp-admin/export.php

     
    109109                        continue;
    110110
    111111                $month = zeroise( $date->month, 2 );
    112                 echo '<option value="' . $date->year . '-' . $month . '" />' . $wp_locale->get_month( $month ) . ' ' . $date->year . '</option>';
     112                echo '<option value="' . $date->year . '-' . $month . '">' . $wp_locale->get_month( $month ) . ' ' . $date->year . '</option>';
    113113        }
    114114}
    115115?>
  • wp-admin/options-writing.php

     
    6969<?php foreach ( $post_formats[0] as $format ): ?>
    7070                <option<?php selected( get_option('default_post_format'), $format ); ?> value="<?php echo esc_attr( $format ); ?>"><?php echo esc_html( get_post_format_string( $format ) ); ?></option>
    7171<?php endforeach; ?>
    72         </select></label>
     72        </select>
    7373</td>
    7474</tr>
    7575<?php endif; endif; ?>