Changeset 12619
- Timestamp:
- 01/07/2010 12:21:19 AM (15 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/wp-admin/ms-options.php
r12610 r12619 10 10 include('admin-header.php'); 11 11 12 if ( is_site_admin() == false ) {12 if ( !is_super_admin() ) 13 13 wp_die( __('You do not have permission to access this page.') ); 14 }15 14 16 15 if (isset($_GET['updated'])) { … … 30 29 <th scope="row"><?php _e('Site Name') ?></th> 31 30 <td> 32 <input name="site_name" type="text" id="site_name" style="width: 95%" value="<?php echo $current_site->site_name?>" size="45" />31 <input name="site_name" type="text" id="site_name" style="width: 95%" value="<?php echo esc_attr($current_site->site_name) ?>" size="45" /> 33 32 <br /> 34 33 <?php _e('What you would like to call this website.') ?> … … 39 38 <th scope="row"><?php _e('Site Admin Email') ?></th> 40 39 <td> 41 <input name="admin_email" type="text" id="admin_email" style="width: 95%" value="<?php echo stripslashes( get_site_option('admin_email') ) ?>" size="45" />40 <input name="admin_email" type="text" id="admin_email" style="width: 95%" value="<?php echo esc_attr( stripslashes( get_site_option('admin_email') ) ) ?>" size="45" /> 42 41 <br /> 43 42 <?php printf( __( 'Registration and support mails will come from this address. Make it generic like "support@%s"' ), $current_site->domain ); ?> … … 96 95 $blogname = ''; 97 96 }?> 98 <input name="dashboard_blog_orig" type="hidden" id="dashboard_blog_orig" value="<?php echo $blogname; ?>" />99 <input name="dashboard_blog" type="text" id="dashboard_blog" value="<?php echo $blogname; ?>" size="30" />97 <input name="dashboard_blog_orig" type="hidden" id="dashboard_blog_orig" value="<?php echo esc_attr($blogname); ?>" /> 98 <input name="dashboard_blog" type="text" id="dashboard_blog" value="<?php echo esc_attr($blogname); ?>" size="30" /> 100 99 <br /> 101 100 <?php _e( "Blogname ('dashboard', 'control', 'manager', etc) or blog id.<br />New users are added to this blog as subscribers (or the user role defined below) if they don't have a blog. Leave blank for the main blog. 'Subscriber' users on old blog will be moved to the new blog if changed. New blog will be created if it does not exist." ); ?> … … 117 116 <th scope="row"><?php _e('Banned Names') ?></th> 118 117 <td> 119 <input name="illegal_names" type="text" id="illegal_names" style="width: 95%" value="<?php echo implode( " ", get_site_option('illegal_names') ); ?>" size="45" />118 <input name="illegal_names" type="text" id="illegal_names" style="width: 95%" value="<?php echo esc_attr( implode( " ", get_site_option('illegal_names') ) ); ?>" size="45" /> 120 119 <br /> 121 120 <?php _e('Users are not allowed to register these blogs. Separate names by spaces.') ?> … … 194 193 <th scope="row"><?php _e('First Comment URL') ?></th> 195 194 <td> 196 <input type="text" size='40' name="first_comment_url" id="first_comment_url" value="<?php echo get_site_option('first_comment_url') ?>" />195 <input type="text" size='40' name="first_comment_url" id="first_comment_url" value="<?php echo esc_attr(get_site_option('first_comment_url')) ?>" /> 197 196 <br /> 198 197 <?php _e('URL on first comment on a new blog.') ?> … … 217 216 <tr valign="top"> 218 217 <th scope="row"><?php _e('Blog upload space') ?></th> 219 <td><input name="blog_upload_space" type="text" id="blog_upload_space" value="<?php echo get_site_option('blog_upload_space', 10) ?>" size="3" /> MB</td>218 <td><input name="blog_upload_space" type="text" id="blog_upload_space" value="<?php echo esc_attr( get_site_option('blog_upload_space', 10) ) ?>" size="3" /> MB</td> 220 219 </tr> 221 220 222 221 <tr valign="top"> 223 222 <th scope="row"><?php _e('Upload File Types') ?></th> 224 <td><input name="upload_filetypes" type="text" id="upload_filetypes" value="<?php echo get_site_option('upload_filetypes', 'jpg jpeg png gif') ?>" size="45" /></td>223 <td><input name="upload_filetypes" type="text" id="upload_filetypes" value="<?php echo esc_attr( get_site_option('upload_filetypes', 'jpg jpeg png gif') ) ?>" size="45" /></td> 225 224 </tr> 226 225 227 226 <tr valign="top"> 228 227 <th scope="row"><?php _e('Max upload file size') ?></th> 229 <td><input name="fileupload_maxk" type="text" id="fileupload_maxk" value="<?php echo get_site_option('fileupload_maxk', 300) ?>" size="5" /> KB</td>228 <td><input name="fileupload_maxk" type="text" id="fileupload_maxk" value="<?php echo esc_attr( get_site_option('fileupload_maxk', 300) ) ?>" size="5" /> KB</td> 230 229 </tr> 231 230 <tr valign="top"> 232 231 <th scope="row"><?php _e('Admin Notice Feed') ?></th> 233 <td><input name="admin_notice_feed" style="width: 95%" type="text" id="admin_notice_feed" value="<?php echo get_site_option( 'admin_notice_feed') ?>" size="80" /><br />232 <td><input name="admin_notice_feed" style="width: 95%" type="text" id="admin_notice_feed" value="<?php echo esc_attr( get_site_option( 'admin_notice_feed' ) ) ?>" size="80" /><br /> 234 233 <?php _e( 'Display the latest post from this RSS or Atom feed on all blog dashboards. Leave blank to disable.' ); ?><br /> 235 234 <?php if( get_site_option( 'admin_notice_feed' ) != 'http://' . $current_site->domain . $current_site->path . 'feed/' ) … … 243 242 <th scope="row"><?php _e('Site Admins') ?></th> 244 243 <td> 245 <input name="site_admins" type="text" id="site_admins" style="width: 95%" value="<?php echo implode(' ', get_site_option( 'site_admins', array( 'admin') ) ) ?>" size="45" />244 <input name="site_admins" type="text" id="site_admins" style="width: 95%" value="<?php echo esc_attr( implode(' ', get_site_option( 'site_admins', array( 'admin' ) ) ) ) ?>" size="45" /> 246 245 <br /> 247 246 <?php _e('These users may login to the main blog and administer the site. Space separated list of usernames.') ?> … … 292 291 293 292 <p class="submit"> 294 <input type="submit" name="Submit" value="<?php _e('Update Options') ?>" /></p>293 <input type="submit" name="Submit" value="<?php esc_attr_e('Update Options') ?>" /></p> 295 294 </form> 296 295 </div>
Note: See TracChangeset
for help on using the changeset viewer.