Changeset 11110 for trunk/wp-admin/install.php

Timestamp:

04/28/2009 06:37:51 AM (12 years ago)

Author:

ryan

Message:

attr escaping. see #9650

File:

• trunk/wp-admin/install.php (modified) (2 diffs)

trunk/wp-admin/install.php

@@ -58 +58 @@
         <tr>
             <th scope="row"><label for="weblog_title"><?php _e('Blog Title'); ?></label></th>
-            <td><input name="weblog_title" type="text" id="weblog_title" size="25" value="<?php echo ( isset($_POST['weblog_title']) ? $_POST['weblog_title'] : '' ); ?>" /></td>
+            <td><input name="weblog_title" type="text" id="weblog_title" size="25" value="<?php echo ( isset($_POST['weblog_title']) ? attr($_POST['weblog_title']) : '' ); ?>" /></td>
         </tr>
         <tr>
             <th scope="row"><label for="admin_email"><?php _e('Your E-mail'); ?></label></th>
-            <td><input name="admin_email" type="text" id="admin_email" size="25" value="<?php echo ( isset($_POST['admin_email']) ? $_POST['admin_email'] : '' ); ?>" /><br />
+            <td><input name="admin_email" type="text" id="admin_email" size="25" value="<?php echo ( isset($_POST['admin_email']) ? attr($_POST['admin_email']) : '' ); ?>" /><br />
             <?php _e('Double-check your email address before continuing.'); ?>
         </tr>
@@ -69 +69 @@
         </tr>
     </table>
-    <p class="step"><input type="submit" name="Submit" value="<?php _e('Install WordPress'); ?>" class="button" /></p>
+    <p class="step"><input type="submit" name="Submit" value="<?php _ea('Install WordPress'); ?>" class="button" /></p>
 </form>
 <?php