Ticket #44044: 44044.2.diff
| File 44044.2.diff, 1.0 KB (added by , 7 years ago) |
|---|
-
src/wp-admin/includes/file.php
1958 1958 * @return string The HTML for this group and its items. 1959 1959 */ 1960 1960 function wp_privacy_generate_personal_data_export_group_html( $group_data ) { 1961 $allowed_tags = array( 1962 'a' => array( 1963 'href' => array(), 1964 'target' => array() 1965 ), 1966 'br' => array() 1967 ); 1968 $allowed_protocols = array( 'http', 'https' ); 1969 $group_html = ''; 1970 1961 $group_html = ''; 1971 1962 $group_html .= '<h2>' . esc_html( $group_data['group_label'] ) . '</h2>'; 1972 1963 $group_html .= '<div>'; 1973 1964 … … 1984 1975 1985 1976 $group_html .= '<tr>'; 1986 1977 $group_html .= '<th>' . esc_html( $group_item_datum['name'] ) . '</th>'; 1987 $group_html .= '<td>' . wp_kses( $value, $allowed_tags, $allowed_protocols) . '</td>';1978 $group_html .= '<td>' . wp_kses( $value, 'personal_data_export' ) . '</td>'; 1988 1979 $group_html .= '</tr>'; 1989 1980 } 1990 1981