Changeset 11204 for trunk/wp-includes/functions.php

Timestamp:

05/05/2009 07:43:53 PM (16 years ago)

Author:

markjaquith

Message:

_a(), _ea(), _xa(), attr() are now esc_attr(), esc_attr_e(), esc_attr_x(), esc_attr() -- still short, but less cryptic. see #9650

File:

• trunk/wp-includes/functions.php (modified) (4 diffs)

trunk/wp-includes/functions.php

@@ -394 +394 @@
  */
 function form_option( $option ) {
-    echo attr (get_option( $option ) );
+    echo esc_attr(get_option( $option ) );
 }
 
@@ -1744 +1744 @@
  */
 function wp_nonce_field( $action = -1, $name = "_wpnonce", $referer = true , $echo = true ) {
-    $name = attr( $name );
+    $name = esc_attr( $name );
     $nonce_field = '<input type="hidden" id="' . $name . '" name="' . $name . '" value="' . wp_create_nonce( $action ) . '" />';
     if ( $echo )
@@ -1769 +1769 @@
  */
 function wp_referer_field( $echo = true) {
-    $ref = attr( $_SERVER['REQUEST_URI'] );
+    $ref = esc_attr( $_SERVER['REQUEST_URI'] );
     $referer_field = '<input type="hidden" name="_wp_http_referer" value="'. $ref . '" />';
 
@@ -1795 +1795 @@
     $jump_back_to = ( 'previous' == $jump_back_to ) ? wp_get_referer() : $_SERVER['REQUEST_URI'];
     $ref = ( wp_get_original_referer() ) ? wp_get_original_referer() : $jump_back_to;
-    $orig_referer_field = '<input type="hidden" name="_wp_original_http_referer" value="' . attr( stripslashes( $ref ) ) . '" />';
+    $orig_referer_field = '<input type="hidden" name="_wp_original_http_referer" value="' . esc_attr( stripslashes( $ref ) ) . '" />';
     if ( $echo )
         echo $orig_referer_field;