WordPress.org
Get WordPress

Make WordPress Core


Ignore:
Timestamp:
05/18/2009 03:11:07 PM (16 years ago)
Author:
markjaquith
Message:

deprecate wp_specialchars() in favor of esc_html(). Encode quotes for esc_html() as in esc_attr(), to improve plugin security.

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/wp-admin/import.php

    r10150 r11380  
    1616<div class="wrap">
    1717<?php screen_icon(); ?>
    18 <h2><?php echo wp_specialchars( $title ); ?></h2>
     18<h2><?php echo esc_html( $title ); ?></h2>
    1919<p><?php _e('If you have posts or comments in another system, WordPress can import those into this blog. To get started, choose a system to import from below:'); ?></p>
    2020
Note: See TracChangeset for help on using the changeset viewer.