WordPress.org

Make WordPress Core


Ignore:
Timestamp:
01/07/2010 12:25:02 AM (11 years ago)
Author:
ryan
Message:

Add esc_attr to ms-users.php. see #11792

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/ms-users.php

    r12620 r12621  
    106106    <form action="wpmu-users.php" method="get" class="search-form">
    107107        <p class="search-box">
    108         <input type="text" name="s" value="<?php if (isset($_GET['s'])) _e( stripslashes( $s ) ); ?>" class="search-input" id="user-search-input" />
    109         <input type="submit" id="post-query-submit" value="<?php _e('Search Users') ?>" class="button" />
     108        <input type="text" name="s" value="<?php if (isset($_GET['s'])) esc_attr( stripslashes( $s ) ); ?>" class="search-input" id="user-search-input" />
     109        <input type="submit" id="post-query-submit" value="<?php esc_attr_e('Search Users') ?>" class="button" />
    110110        </p>
    111111    </form>
     
    117117
    118118            <div class="alignleft actions">
    119                 <input type="submit" value="<?php _e('Delete') ?>" name="alluser_delete" class="button-secondary delete" />
    120                 <input type="submit" value="<?php _e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" />
    121                 <input type="submit" value="<?php _e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" />
     119                <input type="submit" value="<?php esc_attr_e('Delete') ?>" name="alluser_delete" class="button-secondary delete" />
     120                <input type="submit" value="<?php esc_attr_e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" />
     121                <input type="submit" value="<?php esc_attr_e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" />
    122122                <?php wp_nonce_field( 'allusers' ); ?>
    123123                <br class="clear" />
     
    177177                        switch($column_name) {
    178178                            case 'checkbox': ?>
    179                                 <th scope="row" class="check-column"><input type='checkbox' id='user_<?php echo $user['ID'] ?>' name='allusers[]' value='<?php echo $user['ID'] ?>' /></th>
     179                                <th scope="row" class="check-column"><input type='checkbox' id='user_<?php echo $user['ID'] ?>' name='allusers[]' value='<?php echo esc_attr($user['ID']) ?>' /></th>
    180180                            <?php
    181181                            break;
     
    266266
    267267            <div class="alignleft">
    268                 <input type="submit" value="<?php _e('Delete') ?>" name="alluser_delete" class="button-secondary delete" />
    269                 <input type="submit" value="<?php _e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" />
    270                 <input type="submit" value="<?php _e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" />
     268                <input type="submit" value="<?php esc_attr_e('Delete') ?>" name="alluser_delete" class="button-secondary delete" />
     269                <input type="submit" value="<?php esc_attr_e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" />
     270                <input type="submit" value="<?php esc_attr_e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" />
    271271                <?php wp_nonce_field( 'allusers' ); ?>
    272272                <br class="clear" />
     
    297297    <p class="submit">
    298298        <?php wp_nonce_field('add-user') ?>
    299         <input class="button" type="submit" name="Add user" value="<?php _e('Add user') ?>" /></p>
     299        <input class="button" type="submit" name="Add user" value="<?php esc_attr_e('Add user') ?>" /></p>
    300300    </form>
    301301</div>
Note: See TracChangeset for help on using the changeset viewer.