Changeset 14347 for trunk/wp-admin/ms-edit.php

Timestamp:

05/02/2010 10:53:59 PM (15 years ago)

Author:

ryan

Message:

Escape links by default. Props alexkingorg. see #13051

File:

• trunk/wp-admin/ms-edit.php (modified) (3 diffs)

trunk/wp-admin/ms-edit.php

@@ -30 +30 @@
 
         if ( empty( $_POST ) )
-            wp_die( sprintf( __( 'You probably need to go back to the <a href="%s">options page</a>.', esc_url( admin_url( 'ms-options.php' ) ) ) ) );
+            wp_die( sprintf( __( 'You probably need to go back to the <a href="%s">options page</a>.', admin_url( 'ms-options.php' ) ) ) );
 
         if ( isset($_POST['WPLANG']) && ( '' === $_POST['WPLANG'] || in_array( $_POST['WPLANG'], get_available_languages() ) ) )
@@ -205 +205 @@
 
         if ( empty( $_POST ) )
-            wp_die( sprintf( __( 'You probably need to go back to the <a href="%s">sites page</a>', esc_url( admin_url( 'ms-sites.php' ) ) ) ) );
+            wp_die( sprintf( __( 'You probably need to go back to the <a href="%s">sites page</a>', admin_url( 'ms-sites.php' ) ) ) );
 
         switch_to_blog( $id );
@@ -467 +467 @@
             </head>
             <body id="error-page">
-                <h1 id="logo"><img alt="WordPress" src="<?php echo esc_attr( admin_url( 'images/wordpress-logo.png' ) ); ?>" /></h1>
+                <h1 id="logo"><img alt="WordPress" src="<?php echo admin_url( 'images/wordpress-logo.png' ); ?>" /></h1>
                 <form action="ms-edit.php?action=<?php echo esc_attr( $_GET['action2'] ) ?>" method="post">
                     <input type="hidden" name="action" value="<?php echo esc_attr( $_GET['action2'] ) ?>" />