Changeset 13029 for trunk/wp-content/themes/twentyten/tag.php

Timestamp:

02/08/2010 08:28:13 PM (15 years ago)

Author:

ryan

Message:

Escape some attributes. Fix search form action. see #9015

File:

• trunk/wp-content/themes/twentyten/tag.php (modified) (2 diffs)

trunk/wp-content/themes/twentyten/tag.php

@@ -20 +20 @@
 
                 <div id="post-<?php the_ID(); ?>" <?php post_class(); ?>>
-                    <h2 class="entry-title"><a href="<?php the_permalink(); ?>" title="<?php printf( __('Permalink to %s', 'twentyten'), the_title_attribute('echo=0') ); ?>" rel="bookmark"><?php the_title(); ?></a></h2>
+                    <h2 class="entry-title"><a href="<?php the_permalink(); ?>" title="<?php printf( esc_attr__('Permalink to %s', 'twentyten'), the_title_attribute('echo=0') ); ?>" rel="bookmark"><?php the_title(); ?></a></h2>
 
                     <div class="entry-meta">
@@ -26 +26 @@
                         <a href="<?php the_permalink(); ?>" title="<?php the_time('Y-m-d\TH:i:sO') ?>" rel="bookmark"><span class="entry-date"><?php the_time( get_option( 'date_format' ) ); ?></span></a>
                         <span class="meta-sep"> <?php _e('by ', 'twentyten'); ?> </span>
-                        <span class="author vcard"><a class="url fn n" href="<?php echo get_author_posts_url( $authordata->ID, $authordata->user_nicename ); ?>" title="<?php printf( __( 'View all posts by %s', 'twentyten' ), $authordata->display_name ); ?>"><?php the_author(); ?></a></span>
+                        <span class="author vcard"><a class="url fn n" href="<?php echo get_author_posts_url( $authordata->ID, $authordata->user_nicename ); ?>" title="<?php printf( esc_attr__( 'View all posts by %s', 'twentyten' ), $authordata->display_name ); ?>"><?php the_author(); ?></a></span>
                     </div><!-- .entry-meta -->