WordPress.org
Get WordPress

Make WordPress Core

Ticket #3279: 3279.diff

File 3279.diff, 770 bytes (added by westi, 16 years ago)

urlencode the arguments that come from the folder names

  • wp-admin/themes.php

     
    6969        $author = $themes[$theme_name]['Author'];
    7070        $screenshot = $themes[$theme_name]['Screenshot'];
    7171        $stylesheet_dir = $themes[$theme_name]['Stylesheet Dir'];
    72         $activate_link = wp_nonce_url("themes.php?action=activate&template=$template&stylesheet=$stylesheet", 'switch-theme_' . $template);
     72        $activate_link = wp_nonce_url("themes.php?action=activate&template=".urlencode($template)."&stylesheet=".urlencode($stylesheet), 'switch-theme_' . $template);
    7373?>
    7474<div class="available-theme">
    7575<h3><a href="<?php echo $activate_link; ?>"><?php echo $title; ?></a></h3>