Make WordPress Core


Ignore:
Timestamp:
04/20/2009 05:46:46 PM (15 years ago)
Author:
ryan
Message:

Add some CYA clean_url()s

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-includes/comment-template.php

    r10982 r11011  
    994994
    995995    if ( get_option('comment_registration') && !$user_ID )
    996         $link = '<a rel="nofollow" href="' . wp_login_url( get_permalink() ) . '">' . $login_text . '</a>';
     996        $link = '<a rel="nofollow" href="' . clean_url( wp_login_url( get_permalink() ) ) . '">' . $login_text . '</a>';
    997997    else
    998         $link = "<a rel='nofollow' class='comment-reply-link' href='" . wp_specialchars( add_query_arg( 'replytocom', $comment->comment_ID ) ) . "#" . $respond_id . "' onclick='return addComment.moveForm(\"$add_below-$comment->comment_ID\", \"$comment->comment_ID\", \"$respond_id\", \"$post->ID\")'>$reply_text</a>";
     998        $link = "<a rel='nofollow' class='comment-reply-link' href='" . clean_url( add_query_arg( 'replytocom', $comment->comment_ID ) ) . "#" . $respond_id . "' onclick='return addComment.moveForm(\"$add_below-$comment->comment_ID\", \"$comment->comment_ID\", \"$respond_id\", \"$post->ID\")'>$reply_text</a>";
    999999    return apply_filters('comment_reply_link', $before . $link . $after, $args, $comment, $post);
    10001000}
Note: See TracChangeset for help on using the changeset viewer.