WordPress.org

Make WordPress Core

Ticket #17364: 17364.patch

File 17364.patch, 4.1 KB (added by peaceablewhale, 4 years ago)
  • wp-admin/custom-header.php

     
    389389                toggle_text(); 
    390390                <?php } ?> 
    391391                }); 
     392/* ]]> */ 
    392393</script> 
    393394<?php 
    394395        } 
  • wp-admin/custom-background.php

     
    237237<input type="hidden" name="action" value="save" /> 
    238238<?php wp_nonce_field('custom-background-upload', '_wpnonce-custom-background-upload') ?> 
    239239<?php submit_button( __( 'Upload' ), 'button', 'submit', false ); ?> 
    240 </p> 
    241240</form> 
    242241</td> 
    243242</tr> 
  • wp-admin/includes/class-wp-terms-list-table.php

     
    250250                $pad = str_repeat( '&#8212; ', max( 0, $this->level ) ); 
    251251                $name = apply_filters( 'term_name', $pad . ' ' . $tag->name, $tag ); 
    252252                $qe_data = get_term( $tag->term_id, $taxonomy, OBJECT, 'edit' ); 
    253                 $edit_link = get_edit_term_link( $tag->term_id, $taxonomy, $post_type ); 
     253                $edit_link = esc_url(get_edit_term_link( $tag->term_id, $taxonomy, $post_type )); 
    254254 
    255255                $out = '<strong><a class="row-title" href="' . $edit_link . '" title="' . esc_attr( sprintf( __( 'Edit &#8220;%s&#8221;' ), $name ) ) . '">' . $name . '</a></strong><br />'; 
    256256 
     
    260260                        $actions['inline hide-if-no-js'] = '<a href="#" class="editinline">' . __( 'Quick&nbsp;Edit' ) . '</a>'; 
    261261                } 
    262262                if ( current_user_can( $tax->cap->delete_terms ) && $tag->term_id != $default_term ) 
    263                         $actions['delete'] = "<a class='delete-tag' href='" . wp_nonce_url( "edit-tags.php?action=delete&amp;taxonomy=$taxonomy&amp;tag_ID=$tag->term_id", 'delete-tag_' . $tag->term_id ) . "'>" . __( 'Delete' ) . "</a>"; 
     263                        $actions['delete'] = "<a class='delete-tag' href='" . esc_url( "edit-tags.php?action=delete&amp;taxonomy=$taxonomy&amp;tag_ID=$tag->term_id", 'delete-tag_' . $tag->term_id ) . "'>" . __( 'Delete' ) . "</a>"; 
    264264 
    265265                $actions = apply_filters( 'tag_row_actions', $actions, $tag ); 
    266266                $actions = apply_filters( "{$taxonomy}_row_actions", $actions, $tag ); 
     
    269269                $out .= '<div class="hidden" id="inline_' . $qe_data->term_id . '">'; 
    270270                $out .= '<div class="name">' . $qe_data->name . '</div>'; 
    271271                $out .= '<div class="slug">' . apply_filters( 'editable_slug', $qe_data->slug ) . '</div>'; 
    272                 $out .= '<div class="parent">' . $qe_data->parent . '</div></div></td>'; 
     272                $out .= '<div class="parent">' . $qe_data->parent . '</div></div>'; 
    273273 
    274274                return $out; 
    275275        } 
     
    300300 
    301301                $args['post_type'] = $post_type; 
    302302 
    303                 return "<a href='" . add_query_arg( $args, 'edit.php' ) . "'>$count</a>"; 
     303                return "<a href='" . esc_url(add_query_arg( $args, 'edit.php' )) . "'>$count</a>"; 
    304304        } 
    305305 
    306306        function column_links( $tag ) { 
  • wp-admin/export.php

     
    109109                        continue; 
    110110 
    111111                $month = zeroise( $date->month, 2 ); 
    112                 echo '<option value="' . $date->year . '-' . $month . '" />' . $wp_locale->get_month( $month ) . ' ' . $date->year . '</option>'; 
     112                echo '<option value="' . $date->year . '-' . $month . '">' . $wp_locale->get_month( $month ) . ' ' . $date->year . '</option>'; 
    113113        } 
    114114} 
    115115?> 
  • wp-admin/options-writing.php

     
    6969<?php foreach ( $post_formats[0] as $format ): ?> 
    7070                <option<?php selected( get_option('default_post_format'), $format ); ?> value="<?php echo esc_attr( $format ); ?>"><?php echo esc_html( get_post_format_string( $format ) ); ?></option> 
    7171<?php endforeach; ?> 
    72         </select></label> 
     72        </select> 
    7373</td> 
    7474</tr> 
    7575<?php endif; endif; ?>