Make WordPress Core


Ignore:
Timestamp:
04/27/2009 11:09:08 PM (16 years ago)
Author:
ryan
Message:

Some attr escaping. see #9650

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/custom-header.php

    r11013 r11104  
    285285<?php if ( !defined( 'NO_HEADER_TEXT' ) ) { ?>
    286286<form method="post" action="<?php echo admin_url('themes.php?page=custom-header&amp;updated=true') ?>">
    287 <input type="button" class="button" value="<?php _e('Hide Text'); ?>" onclick="hide_text()" id="hidetext" />
    288 <input type="button" class="button" value="<?php _e('Select a Text Color'); ?>" id="pickcolor" /><input type="button" class="button" value="<?php _e('Use Original Color'); ?>" onclick="colorDefault()" id="defaultcolor" />
     287<input type="button" class="button" value="<?php _ea('Hide Text'); ?>" onclick="hide_text()" id="hidetext" />
     288<input type="button" class="button" value="<?php _ea('Select a Text Color'); ?>" id="pickcolor" /><input type="button" class="button" value="<?php _ea('Use Original Color'); ?>" onclick="colorDefault()" id="defaultcolor" />
    289289<?php wp_nonce_field('custom-header') ?>
    290 <input type="hidden" name="textcolor" id="textcolor" value="#<?php attribute_escape(header_textcolor()) ?>" /><input name="submit" type="submit" class="button" value="<?php _e('Save Changes'); ?>" /></form>
     290<input type="hidden" name="textcolor" id="textcolor" value="#<?php attribute_escape(header_textcolor()) ?>" /><input name="submit" type="submit" class="button" value="<?php _ea('Save Changes'); ?>" /></form>
    291291<?php } ?>
    292292
     
    302302<?php wp_nonce_field('custom-header') ?>
    303303<p class="submit">
    304 <input type="submit" value="<?php _e('Upload'); ?>" />
     304<input type="submit" value="<?php _ea('Upload'); ?>" />
    305305</p>
    306306</form>
     
    314314<form method="post" action="<?php echo attribute_escape(add_query_arg('step', 1)) ?>">
    315315<?php wp_nonce_field('custom-header'); ?>
    316 <input type="submit" class="button" name="resetheader" value="<?php _e('Restore Original Header'); ?>" />
     316<input type="submit" class="button" name="resetheader" value="<?php _ea('Restore Original Header'); ?>" />
    317317</form>
    318318</div>
     
    387387<input type="hidden" name="width" id="width" />
    388388<input type="hidden" name="height" id="height" />
    389 <input type="hidden" name="attachment_id" id="attachment_id" value="<?php echo $id; ?>" />
    390 <input type="hidden" name="oitar" id="oitar" value="<?php echo $oitar; ?>" />
     389<input type="hidden" name="attachment_id" id="attachment_id" value="<?php echo attr($id); ?>" />
     390<input type="hidden" name="oitar" id="oitar" value="<?php echo attr($oitar); ?>" />
    391391<?php wp_nonce_field('custom-header') ?>
    392 <input type="submit" value="<?php _e('Crop Header'); ?>" />
     392<input type="submit" value="<?php _ea('Crop Header'); ?>" />
    393393</p>
    394394
Note: See TracChangeset for help on using the changeset viewer.