Changeset 11204 for trunk/wp-admin/options.php
- Timestamp:
- 05/05/2009 07:43:53 PM (16 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/wp-admin/options.php
r11110 r11204 100 100 foreach ( (array) $options as $option) : 101 101 $disabled = ''; 102 $option->option_name = attr($option->option_name);102 $option->option_name = esc_attr($option->option_name); 103 103 if ( is_serialized($option->option_value) ) { 104 104 if ( is_serialized_string($option->option_value) ) { … … 123 123 124 124 if (strpos($value, "\n") !== false) echo "<textarea class='$class' name='$option->option_name' id='$option->option_name' cols='30' rows='5'>" . wp_specialchars($value) . "</textarea>"; 125 else echo "<input class='regular-text $class' type='text' name='$option->option_name' id='$option->option_name' value='" . attr($value) . "'$disabled />";125 else echo "<input class='regular-text $class' type='text' name='$option->option_name' id='$option->option_name' value='" . esc_attr($value) . "'$disabled />"; 126 126 127 127 echo "</td> … … 131 131 </table> 132 132 <?php $options_to_update = implode(',', $options_to_update); ?> 133 <p class="submit"><input type="hidden" name="page_options" value="<?php echo attr($options_to_update); ?>" /><input type="submit" name="Update" value="<?php _e('Save Changes') ?>" class="button-primary" /></p>133 <p class="submit"><input type="hidden" name="page_options" value="<?php echo esc_attr($options_to_update); ?>" /><input type="submit" name="Update" value="<?php _e('Save Changes') ?>" class="button-primary" /></p> 134 134 </form> 135 135 </div>
Note: See TracChangeset
for help on using the changeset viewer.