Changeset 1435
- Timestamp:
- 06/18/2004 12:22:09 AM (22 years ago)
- Location:
- trunk
- Files:
-
- 17 edited
-
wp-admin/admin-functions.php (modified) (1 diff)
-
wp-admin/link-categories.php (modified) (5 diffs)
-
wp-admin/link-manager.php (modified) (3 diffs)
-
wp-admin/menu.php (modified) (1 diff)
-
wp-admin/options.php (modified) (1 diff)
-
wp-admin/profile.php (modified) (1 diff)
-
wp-admin/upgrade-functions.php (modified) (2 diffs)
-
wp-admin/users.php (modified) (4 diffs)
-
wp-includes/functions-formatting.php (modified) (1 diff)
-
wp-includes/functions.php (modified) (8 diffs)
-
wp-includes/links.php (modified) (5 diffs)
-
wp-includes/template-functions-author.php (modified) (3 diffs)
-
wp-includes/template-functions-category.php (modified) (7 diffs)
-
wp-includes/template-functions-comment.php (modified) (2 diffs)
-
wp-includes/template-functions-general.php (modified) (6 diffs)
-
wp-includes/template-functions-links.php (modified) (2 diffs)
-
wp-includes/version.php (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
trunk/wp-admin/admin-functions.php
r1432 r1435 81 81 $result[$cat]['cat_ID'] = $cat; 82 82 $result[$cat]['checked'] = in_array($cat, $checked_categories); 83 $result[$cat]['cat_name'] = stripslashes(get_the_category_by_ID($cat));83 $result[$cat]['cat_name'] = get_the_category_by_ID($cat); 84 84 } 85 85 -
trunk/wp-admin/link-categories.php
r1429 r1435 88 88 $cat_id = $_GET['cat_id']; 89 89 $cat_name=get_linkcatname($cat_id); 90 $cat_name=addslashes($cat_name);91 90 92 91 if ($cat_id=="1") … … 133 132 <tr> 134 133 <th width="33%" scope="row"><?php _e('Name:') ?></th> 135 <td width="67%"><input name="cat_name" type="text" value="<?php echo stripslashes($row->cat_name)?>" size="30" /></td>134 <td width="67%"><input name="cat_name" type="text" value="<?php echo $row->cat_name?>" size="30" /></td> 136 135 </tr> 137 136 <tr> … … 191 190 <tr> 192 191 <th width="33%" scope="row"><?php _e('Before Link:') ?></th> 193 <td width="67%"><input type="text" name="text_before_link" size="45" value="<?php echo htmlspecialchars( stripslashes($row->text_before_link))?>" /></td>192 <td width="67%"><input type="text" name="text_before_link" size="45" value="<?php echo htmlspecialchars($row->text_before_link)?>" /></td> 194 193 </tr> 195 194 <tr> 196 195 <th scope="row"><?php _e('Between Link and Description:') ?></th> 197 <td><input type="text" name="text_after_link" size="45" value="<?php echo htmlspecialchars( stripslashes($row->text_after_link))?>" /></td>196 <td><input type="text" name="text_after_link" size="45" value="<?php echo htmlspecialchars($row->text_after_link)?>" /></td> 198 197 </tr> 199 198 <tr> 200 199 <th scope="row"><?php _e('After Link:') ?></th> 201 <td><input type="text" name="text_after_all" size="45" value="<?php echo htmlspecialchars( stripslashes($row->text_after_all))?>"/></td>200 <td><input type="text" name="text_after_all" size="45" value="<?php echo htmlspecialchars($row->text_after_all)?>"/></td> 202 201 </tr> 203 202 </table> … … 224 223 $cat_id=$_POST["cat_id"]; 225 224 226 $cat_name= addslashes(stripslashes($_POST["cat_name"]));225 $cat_name= $_POST["cat_name"]; 227 226 $auto_toggle = $_POST["auto_toggle"]; 228 227 if ($auto_toggle != 'Y') { … … 334 333 ?> 335 334 <tr valign="middle" align="center" <?php echo $style ?> style="border-bottom: 1px dotted #9C9A9C;"> 336 <td><?php echo stripslashes($row->cat_name)?></td>335 <td><?php echo $row->cat_name?></td> 337 336 <td ><?php echo $row->cat_id?></td> 338 337 <td><?php echo $row->auto_toggle?></td> -
trunk/wp-admin/link-manager.php
r1417 r1435 313 313 314 314 if ($row) { 315 $link_url = stripslashes($row->link_url);316 $link_name = stripslashes($row->link_name);315 $link_url = $row->link_url; 316 $link_name = $row->link_name; 317 317 $link_image = $row->link_image; 318 318 $link_target = $row->link_target; 319 319 $link_category = $row->link_category; 320 $link_description = stripslashes($row->link_description);320 $link_description = $row->link_description; 321 321 $link_visible = $row->link_visible; 322 322 $link_rating = $row->link_rating; 323 $link_rel = stripslashes($row->link_rel);324 $link_notes = stripslashes($row->link_notes);323 $link_rel = $row->link_rel; 324 $link_notes = $row->link_notes; 325 325 $link_rss_uri = $row->link_rss; 326 326 } … … 691 691 if ($links) { 692 692 foreach ($links as $link) { 693 $short_url = str_replace('http://', '', stripslashes($link->link_url));693 $short_url = str_replace('http://', '', $link->link_url); 694 694 $short_url = str_replace('www.', '', $short_url); 695 695 if ('/' == substr($short_url, -1)) … … 698 698 $short_url = substr($short_url, 0, 32).'...'; 699 699 700 $link->link_name = stripslashes($link->link_name);701 $link->category = stripslashes($link->category);702 $link->link_rel = stripslashes($link->link_rel);703 $link->link_description = stripslashes($link->link_description);704 700 $image = ($link->link_image != null) ? __('Yes') : __('No'); 705 701 $visible = ($link->link_visible == 'Y') ? __('Yes') : __('No'); -
trunk/wp-admin/menu.php
r1429 r1435 41 41 <li><a href="<?php echo get_settings('home') . '/' . get_settings('blogfilename'); ?>" title="<?php _e('View your site') ?>"><?php _e('View site') ?> »</a></li> 42 42 <li class="last"><a href="<?php echo get_settings('siteurl') 43 ?>/wp-login.php?action=logout" title="<?php _e('Log out of this account') ?>"><?php printf(__('Logout (%s)'), stripslashes($user_nickname)) ?></a></li>43 ?>/wp-login.php?action=logout" title="<?php _e('Log out of this account') ?>"><?php printf(__('Logout (%s)'), $user_nickname) ?></a></li> 44 44 </ul> -
trunk/wp-admin/options.php
r1429 r1435 76 76 // should we even bother checking? 77 77 if ($user_level >= $option->option_admin_level) { 78 $old_val = stripslashes($option->option_value);78 $old_val = $option->option_value; 79 79 $new_val = $_POST[$option->option_name]; 80 80 if (!$new_val) { -
trunk/wp-admin/profile.php
r1422 r1435 84 84 } 85 85 86 $newuser_firstname= addslashes(stripslashes($_POST['newuser_firstname']));87 $newuser_lastname= addslashes(stripslashes($_POST['newuser_lastname']));88 $newuser_nickname= addslashes(stripslashes($_POST['newuser_nickname']));86 $newuser_firstname=$_POST['newuser_firstname']; 87 $newuser_lastname=$_POST['newuser_lastname']; 88 $newuser_nickname=$_POST['newuser_nickname']; 89 89 $newuser_nicename=sanitize_title($newuser_nickname); 90 $newuser_icq= addslashes(stripslashes($_POST['newuser_icq']));91 $newuser_aim= addslashes(stripslashes($_POST['newuser_aim']));92 $newuser_msn= addslashes(stripslashes($_POST['newuser_msn']));93 $newuser_yim= addslashes(stripslashes($_POST['newuser_yim']));94 $newuser_email= addslashes(stripslashes($_POST['newuser_email']));95 $newuser_url= addslashes(stripslashes($_POST['newuser_url']));90 $newuser_icq=$_POST['newuser_icq']; 91 $newuser_aim=$_POST['newuser_aim']; 92 $newuser_msn=$_POST['newuser_msn']; 93 $newuser_yim=$_POST['newuser_yim']; 94 $newuser_email=$_POST['newuser_email']; 95 $newuser_url=$_POST['newuser_url']; 96 96 $newuser_url = preg_match('/^(https?|ftps?|mailto|news|gopher):/is', $newuser_url) ? $newuser_url : 'http://' . $newuser_url; 97 $newuser_idmode= addslashes(stripslashes($_POST['newuser_idmode']));98 $user_description = addslashes(stripslashes($_POST['user_description']));97 $newuser_idmode=$_POST['newuser_idmode']; 98 $user_description = $_POST['user_description']; 99 99 100 100 $query = "UPDATE $wpdb->users SET user_firstname='$newuser_firstname', $updatepassword user_lastname='$newuser_lastname', user_nickname='$newuser_nickname', user_icq='$newuser_icq', user_email='$newuser_email', user_url='$newuser_url', user_aim='$newuser_aim', user_msn='$newuser_msn', user_yim='$newuser_yim', user_idmode='$newuser_idmode', user_description = '$user_description', user_nicename = '$newuser_nicename' WHERE ID = $user_ID"; -
trunk/wp-admin/upgrade-functions.php
r1429 r1435 89 89 } 90 90 return $all_options; 91 } 92 93 function deslash($content) { 94 // Note: \\\ inside a regex denotes a single backslash. 95 96 // Replace one or more backslashes followed by a single quote with 97 // a single quote. 98 $content = preg_replace("/\\\+'/", "'", $content); 99 100 // Replace one or more backslashes followed by a double quote with 101 // a double quote. 102 $content = preg_replace('/\\\+"/', '"', $content); 103 104 // Replace one or more backslashes with one backslash. 105 $content = preg_replace("/\\\+/", "\\", $content); 106 107 return $content; 91 108 } 92 109 … … 872 889 $wpdb->query("UPDATE $wpdb->options SET `autoload` = 'no' WHERE option_name = '$fatoption'"); 873 890 endforeach; 891 892 // Remove extraneous backslashes. 893 $posts = $wpdb->get_results("SELECT ID, post_title, post_content, post_excerpt FROM $wpdb->posts"); 894 if ($posts) { 895 foreach($posts as $post) { 896 $post_content = addslashes(deslash($post->post_content)); 897 $post_title = addslashes(deslash($post->post_title)); 898 $post_excerpt = addslashes(deslash($post->post_excerpt)); 899 $wpdb->query("UPDATE $wpdb->posts SET post_title = '$post_title', post_content = '$post_content', post_excerpt = '$post_excerpt' WHERE ID = '$post->ID'"); 900 } 901 } 902 903 // Remove extraneous backslashes. 904 $comments = $wpdb->get_results("SELECT comment_ID, comment_author, comment_content FROM $wpdb->comments"); 905 if ($comments) { 906 foreach($comments as $comment) { 907 $comment_content = addslashes(deslash($comment->comment_content)); 908 $comment_author = addslashes(deslash($comment->comment_author)); 909 $wpdb->query("UPDATE $wpdb->comments SET comment_content = '$comment_content', comment_author = '$comment_author' WHERE comment_ID = '$comment->comment_ID'"); 910 } 911 } 874 912 } 875 913 -
trunk/wp-admin/users.php
r1422 r1435 71 71 } 72 72 73 $user_login = addslashes(stripslashes($user_login));74 $pass1 = addslashes(stripslashes($pass1));75 $user_nickname = addslashes(stripslashes($user_nickname));76 73 $user_nicename = sanitize_title($user_nickname); 77 $user_firstname = addslashes(stripslashes($user_firstname));78 $user_lastname = addslashes(stripslashes($user_lastname));79 $user_uri = addslashes(stripslashes($user_uri));80 74 $user_uri = preg_match('/^(https?|ftps?|mailto|news|gopher):/is', $user_uri) ? $user_uri : 'http://' . $user_uri; 81 75 $now = gmdate('Y-m-d H:i:s'); … … 96 90 } 97 91 92 $user_login = stripslashes($user_login); 98 93 $message = 'New user registration on your blog ' . get_settings('blogname') . ":\r\n\r\n"; 99 94 $message .= "Login: $user_login\r\n\r\nE-mail: $user_email"; … … 205 200 $email = $user_data->user_email; 206 201 $url = $user_data->user_url; 207 $short_url = str_replace('http://', '', stripslashes($url));202 $short_url = str_replace('http://', '', $url); 208 203 $short_url = str_replace('www.', '', $short_url); 209 204 if ('/' == substr($short_url, -1)) … … 256 251 $email = $user_data->user_email; 257 252 $url = $user_data->user_url; 258 $short_url = str_replace('http://', '', stripslashes($url));253 $short_url = str_replace('http://', '', $url); 259 254 $short_url = str_replace('www.', '', $short_url); 260 255 if ('/' == substr($short_url, -1)) -
trunk/wp-includes/functions-formatting.php
r1409 r1435 51 51 52 52 function clean_pre($text) { 53 $text = stripslashes($text);54 53 $text = str_replace('<br />', '', $text); 55 54 return $text; -
trunk/wp-includes/functions.php
r1428 r1435 167 167 global $wpdb, $cache_userdata; 168 168 if ( empty($cache_userdata[$userid]) ) { 169 $user = $wpdb->get_row("SELECT * FROM $wpdb->users WHERE ID = '$userid'"); 170 $user->user_nickname = stripslashes($user->user_nickname); 171 $user->user_firstname = stripslashes($user->user_firstname); 172 $user->user_lastname = stripslashes($user->user_lastname); 173 $user->user_description = stripslashes($user->user_description); 174 $cache_userdata[$userid] = $user; 175 } else { 176 $user = $cache_userdata[$userid]; 177 } 178 return $user; 169 $cache_userdata[$userid] = 170 $wpdb->get_row("SELECT * FROM $wpdb->users WHERE ID = '$userid'"); 171 } 172 173 return $cache_userdata[$userid]; 179 174 } 180 175 … … 316 311 if ('home' == $option->option_name) $option->option_value = preg_replace('|/+$|', '', $option->option_value); 317 312 if ('category_base' == $option->option_name) $option->option_value = preg_replace('|/+$|', '', $option->option_value); 318 $all_options->{$option->option_name} = stripslashes($option->option_value);313 $all_options->{$option->option_name} = $option->option_value; 319 314 } 320 315 } … … 324 319 function update_option($option_name, $newvalue) { 325 320 global $wpdb, $cache_settings; 326 $newvalue = stripslashes($newvalue);321 $newvalue = $newvalue; 327 322 $newvalue = trim($newvalue); // I can't think of any situation we wouldn't want to trim 328 323 $newvalue = $wpdb->escape($newvalue); … … 517 512 function trackback($trackback_url, $title, $excerpt, $ID) { 518 513 global $wpdb; 519 $title = urlencode( stripslashes($title));520 $excerpt = urlencode( stripslashes($excerpt));521 $blog_name = urlencode( stripslashes(get_settings('blogname')));514 $title = urlencode($title); 515 $excerpt = urlencode($excerpt); 516 $blog_name = urlencode(get_settings('blogname')); 522 517 $tb_url = $trackback_url; 523 518 $url = urlencode(get_permalink($ID)); … … 933 928 $comment_author_domain = gethostbyaddr($comment->comment_author_IP); 934 929 935 $blogname = stripslashes(get_settings('blogname'));930 $blogname = get_settings('blogname'); 936 931 937 932 if ('comment' == $comment_type) { 938 $notify_message = "New comment on your post #$comment->comment_post_ID \"". stripslashes($post->post_title)."\"\r\n\r\n";933 $notify_message = "New comment on your post #$comment->comment_post_ID \"".$post->post_title."\"\r\n\r\n"; 939 934 $notify_message .= "Author : $comment->comment_author (IP: $comment->comment_author_IP , $comment_author_domain)\r\n"; 940 935 $notify_message .= "E-mail : $comment->comment_author_email\r\n"; 941 936 $notify_message .= "URI : $comment->comment_author_url\r\n"; 942 937 $notify_message .= "Whois : http://ws.arin.net/cgi-bin/whois.pl?queryinput=$comment->comment_author_IP\r\n"; 943 $notify_message .= "Comment:\r\n". stripslashes($comment->comment_content)."\r\n\r\n";938 $notify_message .= "Comment:\r\n".$comment->comment_content."\r\n\r\n"; 944 939 $notify_message .= "You can see all comments on this post here: \r\n"; 945 $subject = '[' . $blogname . '] Comment: "' . stripslashes($post->post_title).'"';940 $subject = '[' . $blogname . '] Comment: "' .$post->post_title.'"'; 946 941 } elseif ('trackback' == $comment_type) { 947 $notify_message = "New trackback on your post #$comment_post_ID \"". stripslashes($post->post_title)."\"\r\n\r\n";942 $notify_message = "New trackback on your post #$comment_post_ID \"".$post->post_title."\"\r\n\r\n"; 948 943 $notify_message .= "Website: $comment->comment_author (IP: $comment->comment_author_IP , $comment_author_domain)\r\n"; 949 944 $notify_message .= "URI : $comment->comment_author_url\r\n"; 950 $notify_message .= "Excerpt: \n". stripslashes($comment->comment_content)."\r\n\r\n";945 $notify_message .= "Excerpt: \n".$comment->comment_content."\r\n\r\n"; 951 946 $notify_message .= "You can see all trackbacks on this post here: \r\n"; 952 $subject = '[' . $blogname . '] Trackback: "' . stripslashes($post->post_title).'"';947 $subject = '[' . $blogname . '] Trackback: "' .$post->post_title.'"'; 953 948 } elseif ('pingback' == $comment_type) { 954 $notify_message = "New pingback on your post #$comment_post_ID \"". stripslashes($post->post_title)."\"\r\n\r\n";949 $notify_message = "New pingback on your post #$comment_post_ID \"".$post->post_title."\"\r\n\r\n"; 955 950 $notify_message .= "Website: $comment->comment_author\r\n"; 956 951 $notify_message .= "URI : $comment->comment_author_url\r\n"; 957 952 $notify_message .= "Excerpt: \n[...] $original_context [...]\r\n\r\n"; 958 953 $notify_message .= "You can see all pingbacks on this post here: \r\n"; 959 $subject = '[' . $blogname . '] Pingback: "' . stripslashes($post->post_title).'"';954 $subject = '[' . $blogname . '] Pingback: "' .$post->post_title.'"'; 960 955 } 961 956 $notify_message .= get_permalink($comment->comment_post_ID) . '#comments'; … … 964 959 $from = "From: \"$blogname\" <wordpress@" . $_SERVER['SERVER_NAME'] . '>'; 965 960 } else { 966 $from = 'From: "' . stripslashes($comment->comment_author). "\" <$comment->comment_author_email>";961 $from = 'From: "' . $comment->comment_author . "\" <$comment->comment_author_email>"; 967 962 } 968 963 … … 992 987 $comments_waiting = $wpdb->get_var("SELECT count(comment_ID) FROM $wpdb->comments WHERE comment_approved = '0'"); 993 988 994 $notify_message = "A new comment on the post #$comment->comment_post_ID \"". stripslashes($post->post_title)."\" is waiting for your approval\r\n\r\n";989 $notify_message = "A new comment on the post #$comment->comment_post_ID \"".$post->post_title."\" is waiting for your approval\r\n\r\n"; 995 990 $notify_message .= "Author : $comment->comment_author (IP: $comment->comment_author_IP , $comment_author_domain)\r\n"; 996 991 $notify_message .= "E-mail : $comment->comment_author_email\r\n"; 997 992 $notify_message .= "URL : $comment->comment_author_url\r\n"; 998 993 $notify_message .= "Whois : http://ws.arin.net/cgi-bin/whois.pl?queryinput=$comment->comment_author_IP\r\n"; 999 $notify_message .= "Comment:\r\n". stripslashes($comment->comment_content)."\r\n\r\n";994 $notify_message .= "Comment:\r\n".$comment->comment_content."\r\n\r\n"; 1000 995 $notify_message .= "To approve this comment, visit: " . get_settings('siteurl') . "/wp-admin/post.php?action=mailapprovecomment&p=".$comment->comment_post_ID."&comment=$comment_id\r\n"; 1001 996 $notify_message .= "To delete this comment, visit: " . get_settings('siteurl') . "/wp-admin/post.php?action=confirmdeletecomment&p=".$comment->comment_post_ID."&comment=$comment_id\r\n"; … … 1003 998 $notify_message .= get_settings('siteurl') . "/wp-admin/moderation.php\r\n"; 1004 999 1005 $subject = '[' . stripslashes(get_settings('blogname')) . '] Please approve: "' .stripslashes($post->post_title).'"';1000 $subject = '[' . get_settings('blogname') . '] Please approve: "' .$post->post_title.'"'; 1006 1001 $admin_email = get_settings("admin_email"); 1007 1002 $from = "From: $admin_email"; -
trunk/wp-includes/links.php
r1355 r1435 177 177 $the_link = '#'; 178 178 if (($row->link_url != null) && ($row->link_url != '')) { 179 $the_link = htmlspecialchars( stripslashes($row->link_url));180 } 181 $rel = stripslashes($row->link_rel);179 $the_link = htmlspecialchars($row->link_url); 180 } 181 $rel = $row->link_rel; 182 182 if ($rel != '') { 183 183 $rel = " rel='$rel'"; 184 184 } 185 $desc = htmlspecialchars( stripslashes($row->link_description), ENT_QUOTES);186 $name = htmlspecialchars( stripslashes($row->link_name), ENT_QUOTES);185 $desc = htmlspecialchars($row->link_description, ENT_QUOTES); 186 $name = htmlspecialchars($row->link_name, ENT_QUOTES); 187 187 188 188 $title = $desc; … … 274 274 ** $links = get_linkobjectsbyname('fred'); 275 275 ** foreach ($links as $link) { 276 ** echo '<li>'. stripslashes($link->link_name).'</li>';276 ** echo '<li>'.$link->link_name.'</li>'; 277 277 ** } 278 278 **/ … … 351 351 if ($results) { 352 352 foreach ($results as $result) { 353 $result->link_url = stripslashes($result->link_url);354 $result->link_name = stripslashes($result->link_name);355 $result->link_description = stripslashes($result->link_description);356 $result->link_notes = stripslashes($result->link_notes);353 $result->link_url = $result->link_url; 354 $result->link_name = $result->link_name; 355 $result->link_description = $result->link_description; 356 $result->link_notes = $result->link_notes; 357 357 $newresults[] = $result; 358 358 } … … 465 465 $cat_name = $wpdb->get_var("SELECT cat_name FROM $wpdb->linkcategories WHERE cat_id=$id"); 466 466 } 467 return stripslashes($cat_name);467 return $cat_name; 468 468 } 469 469 … … 560 560 561 561 // Display the category name 562 echo ' <li id="'.sanitize_title($cat['cat_name']).'">' . stripslashes($cat['cat_name']). "\n\t<ul>\n";562 echo ' <li id="'.sanitize_title($cat['cat_name']).'">' . $cat['cat_name'] . "\n\t<ul>\n"; 563 563 // Call get_links() with all the appropriate params 564 564 get_links($cat['link_category'], -
trunk/wp-includes/template-functions-author.php
r1355 r1435 73 73 global $id, $authordata; 74 74 75 echo '<a href="' . get_author_link(0, $authordata->ID, $authordata->user_nicename) . '" title="' . sprintf(__("Posts by %s"), htmlspecialchars(the_author($idmode, false))) . '">' . stripslashes(the_author($idmode, false)) . '</a>';75 echo '<a href="' . get_author_link(0, $authordata->ID, $authordata->user_nicename) . '" title="' . sprintf(__("Posts by %s"), htmlspecialchars(the_author($idmode, false))) . '">' . the_author($idmode, false) . '</a>'; 76 76 } 77 77 … … 144 144 if (! $hide_empty) echo $name; 145 145 } else { 146 $link = '<a href="' . get_author_link(0, $author->ID, $author->user_nicename) . '" title="' . sprintf(__("Posts by %s"), htmlspecialchars($author->user_nickname)) . '">' . stripslashes($name). '</a>';146 $link = '<a href="' . get_author_link(0, $author->ID, $author->user_nicename) . '" title="' . sprintf(__("Posts by %s"), htmlspecialchars($author->user_nickname)) . '">' . $name . '</a>'; 147 147 148 148 if ( (! empty($feed_image)) || (! empty($feed)) ) { … … 157 157 158 158 if (! empty($feed)) { 159 $title = ' title="' . stripslashes($feed). '"';160 $alt = ' alt="' . stripslashes($feed). '"';161 $name = stripslashes($feed);159 $title = ' title="' . $feed . '"'; 160 $alt = ' alt="' . $feed . '"'; 161 $name = $feed; 162 162 $link .= $title; 163 163 } -
trunk/wp-includes/template-functions-category.php
r1429 r1435 69 69 $thelist .= '<ul class="post-categories">'; 70 70 foreach ($categories as $category) { 71 $category->cat_name = stripslashes($category->cat_name);71 $category->cat_name = $category->cat_name; 72 72 $thelist .= "\n\t<li>"; 73 73 switch(strtolower($parents)) { … … 94 94 $i = 0; 95 95 foreach ($categories as $category) { 96 $category->cat_name = stripslashes($category->cat_name);96 $category->cat_name = $category->cat_name; 97 97 if (0 < $i) $thelist .= $seperator . ' '; 98 98 switch(strtolower($parents)) { … … 118 118 $the_list = ''; 119 119 foreach ($categories as $category) { 120 $category->cat_name = stripslashes(convert_chars($category->cat_name));120 $category->cat_name = convert_chars($category->cat_name); 121 121 if ('rdf' == $type) { 122 122 $the_list .= "\n\t<dc:subject>$category->cat_name</dc:subject>"; … … 136 136 $cat_name = $cache_categories[$cat_ID]->cat_name; 137 137 } 138 return( stripslashes($cat_name));138 return($cat_name); 139 139 } 140 140 … … 243 243 echo ' selected="selected"'; 244 244 echo '>'; 245 echo stripslashes($cat_name);245 echo $cat_name; 246 246 if (intval($optioncount) == 1) echo ' ('.$category->cat_count.')'; 247 247 if (intval($optiondates) == 1) echo ' '.$category->lastday.'/'.$category->lastmonth; … … 360 360 } 361 361 $link .= '>'; 362 $link .= apply_filters('list_cats', stripslashes($category->cat_name)).'</a>';362 $link .= apply_filters('list_cats', $category->cat_name).'</a>'; 363 363 364 364 if ( (! empty($feed_image)) || (! empty($feed)) ) { … … 373 373 374 374 if ( !empty($feed) ) { 375 $title = ' title="' . stripslashes($feed). '"';376 $alt = ' alt="' . stripslashes($feed). '"';377 $name = stripslashes($feed);375 $title = ' title="' . $feed . '"'; 376 $alt = ' alt="' . $feed . '"'; 377 $name = $feed; 378 378 $link .= $title; 379 379 } -
trunk/wp-includes/template-functions-comment.php
r1405 r1435 161 161 $email = apply_filters('comment_email', $comment->comment_author_email); 162 162 if ((!empty($email)) && ($email != '@')) { 163 $display = ($linktext != '') ? $linktext : stripslashes($email);163 $display = ($linktext != '') ? $linktext : $email; 164 164 echo $before; 165 165 echo "<a href='mailto:$email'>$display</a>"; … … 173 173 174 174 if ((!empty($url)) && ($url != 'http://') && ($url != 'http://url')) { 175 $display = ($linktext != '') ? $linktext : stripslashes($url);175 $display = ($linktext != '') ? $linktext : $url; 176 176 echo "$before<a href='$url' rel='external'>$display</a>$after"; 177 177 } -
trunk/wp-includes/template-functions-general.php
r1430 r1435 73 73 if(!empty($cat)) { 74 74 if (!stristr($cat,'-')) { // category excluded 75 $title = stripslashes(get_the_category_by_ID($cat));75 $title = get_the_category_by_ID($cat); 76 76 } 77 77 } 78 78 if (!empty($category_name)) { 79 $title = stripslashes($wpdb->get_var("SELECT cat_name FROM $wpdb->categories WHERE category_nicename = '$category_name'"));79 $title = $wpdb->get_var("SELECT cat_name FROM $wpdb->categories WHERE category_nicename = '$category_name'"); 80 80 } 81 81 … … 99 99 // If there's a post 100 100 if ($single) { 101 $title = strip_tags( stripslashes($posts[0]->post_title));101 $title = strip_tags($posts[0]->post_title); 102 102 $title = apply_filters('single_post_title', $title); 103 103 } … … 121 121 $title = apply_filters('single_post_title', $title); 122 122 if ($display) { 123 echo $prefix.strip_tags( stripslashes($title));123 echo $prefix.strip_tags($title); 124 124 } else { 125 return strip_tags( stripslashes($title));125 return strip_tags($title); 126 126 } 127 127 } … … 134 134 if(!empty($my_cat_name)) { 135 135 if ($display) 136 echo $prefix.strip_tags( stripslashes($my_cat_name));136 echo $prefix.strip_tags($my_cat_name); 137 137 else 138 return strip_tags( stripslashes($my_cat_name));138 return strip_tags($my_cat_name); 139 139 } 140 140 } … … 268 268 if ($arcresult->post_date != '0000-00-00 00:00:00') { 269 269 $url = get_permalink($arcresult->ID); 270 $arc_title = stripslashes($arcresult->post_title);270 $arc_title = $arcresult->post_title; 271 271 if ($arc_title) { 272 272 $text = strip_tags($arc_title); … … 420 420 } 421 421 if (empty($ak_titles_for_day["$ak_post_title->dom"])) { // first one 422 $ak_titles_for_day["$ak_post_title->dom"] = str_replace('"', '"', wptexturize( stripslashes($ak_post_title->post_title)));422 $ak_titles_for_day["$ak_post_title->dom"] = str_replace('"', '"', wptexturize($ak_post_title->post_title)); 423 423 } else { 424 $ak_titles_for_day["$ak_post_title->dom"] .= $ak_title_separator . str_replace('"', '"', wptexturize( stripslashes($ak_post_title->post_title)));424 $ak_titles_for_day["$ak_post_title->dom"] .= $ak_title_separator . str_replace('"', '"', wptexturize($ak_post_title->post_title)); 425 425 } 426 426 } -
trunk/wp-includes/template-functions-links.php
r1395 r1435 256 256 $string = '<a href="'.get_permalink($lastpost->ID).'">'.$previous; 257 257 if ($title == 'yes') { 258 $string .= wptexturize( stripslashes($lastpost->post_title));258 $string .= wptexturize($lastpost->post_title); 259 259 } 260 260 $string .= '</a>'; … … 294 294 $string = '<a href="'.get_permalink($nextpost->ID).'">'.$next; 295 295 if ($title=='yes') { 296 $string .= wptexturize( stripslashes($nextpost->post_title));296 $string .= wptexturize($nextpost->post_title); 297 297 } 298 298 $string .= '</a>'; -
trunk/wp-includes/version.php
r1362 r1435 3 3 // This just holds the version number, in a separate file so we can bump it without cluttering the CVS 4 4 5 $wp_version = '1.3- pre-alpha';5 $wp_version = '1.3-alpha'; 6 6 7 7 ?>
Note: See TracChangeset
for help on using the changeset viewer.