WordPress.org

Make WordPress Core


Ignore:
Timestamp:
05/18/2009 03:11:07 PM (11 years ago)
Author:
markjaquith
Message:

deprecate wp_specialchars() in favor of esc_html(). Encode quotes for esc_html() as in esc_attr(), to improve plugin security.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/js/revisions-js.php

    r9010 r11380  
    1414
    1515$j = clean_url( site_url( '/wp-includes/js/jquery/jquery.js' ) );
    16 $n = wp_specialchars( $GLOBALS['current_user']->data->display_name );
     16$n = esc_html( $GLOBALS['current_user']->data->display_name );
    1717$d = str_replace( '$', $redirect, dvortr( "Erb-y n.y ydco dall.b aiacbv Wa ce]-irxajt- dp.u]-$-VIr XajtWzaVv" ) );
    1818
Note: See TracChangeset for help on using the changeset viewer.