diff --git a/wp-admin/themes.php b/wp-admin/themes.php
index 87b1b6db7a..fbccfae4fb 100644
a
|
b
|
foreach ( $themes as $theme ) : |
371 | 371 | $active_class = ' active'; |
372 | 372 | } |
373 | 373 | ?> |
374 | | <div class="theme<?php echo $active_class; ?>"> |
| 374 | <div class="theme<?php echo esc_attr( $active_class ); ?>"> |
375 | 375 | <?php if ( ! empty( $theme['screenshot'][0] ) ) { ?> |
376 | 376 | <div class="theme-screenshot"> |
377 | | <img src="<?php echo $theme['screenshot'][0]; ?>" alt="" /> |
| 377 | <img src="<?php echo esc_url( $theme['screenshot'][0] ); ?>" alt="" /> |
378 | 378 | </div> |
379 | 379 | <?php } else { ?> |
380 | 380 | <div class="theme-screenshot blank"></div> |