Context Navigation

Ticket #22327: 22327.2.patch

File 22327.2.patch, 597 bytes (added by johnjamesjacoby, 13 years ago)
esc_attr() only, to allow title's to include HTML

         foreach ( (array) $wp_settings_fields[$page][$section] as $field ) {
                 echo '<tr valign="top">';
                 if ( !empty($field['args']['label_for']) )
                         echo '<th scope="row"><label for="' . $field['args']['label_for'] . '">' . $field['title'] . '</label></th>';
+                        echo '<th scope="row"><label for="' . esc_attr( $field['args']['label_for'] ) . '">' . $field['title'] . '</label></th>';
                 else
                         echo '<th scope="row">' . $field['title'] . '</th>';
                 echo '<td>';