WordPress.org
Get WordPress

Make WordPress Core


Ignore:
Timestamp:
05/03/2010 06:16:22 PM (16 years ago)
Author:
ryan
Message:

Revert [14347] and [14372]. It broke more than we expected. Try again in 3.1. see #13051

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/wp-admin/includes/ms.php

    r14347 r14374  
    211211                    $blog_users = get_users_of_blog( $details->userblog_id );
    212212                    if ( is_array( $blog_users ) && !empty( $blog_users ) ) {
    213                         $user_site = "<a href='" . get_home_url( $details->userblog_id ) . "'>{$details->blogname}</a>";
     213                        $user_site = "<a href='" . esc_url( get_home_url( $details->userblog_id ) ) . "'>{$details->blogname}</a>";
    214214                        $user_dropdown = "<select name='blog[$val][{$key}]'>";
    215215                        $user_list = '';
     
    301301###SITEURL### "), $new_admin_email );
    302302
    303     $content = str_replace( '###ADMIN_URL###', admin_url( 'options.php?adminhash='.$hash ), $content );
     303    $content = str_replace( '###ADMIN_URL###', esc_url( admin_url( 'options.php?adminhash='.$hash ) ), $content );
    304304    $content = str_replace( '###EMAIL###', $value, $content );
    305305    $content = str_replace( '###SITENAME###', get_site_option( 'site_name' ), $content );
     
    353353###SITEURL###" ), $new_user_email );
    354354
    355         $content = str_replace( '###ADMIN_URL###', admin_url( 'profile.php?newuseremail='.$hash ), $content );
     355        $content = str_replace( '###ADMIN_URL###', esc_url( admin_url( 'profile.php?newuseremail='.$hash ) ), $content );
    356356        $content = str_replace( '###EMAIL###', $_POST['email'], $content);
    357357        $content = str_replace( '###SITENAME###', get_site_option( 'site_name' ), $content );
     
    482482    <table>
    483483        <tr class="first">
    484             <td class="first b b-posts"><?php printf( __( '<a href="%1$s" title="Manage Uploads" class="musublink">%2$sMB</a>' ), admin_url( 'upload.php' ), $quota ); ?></td>
     484            <td class="first b b-posts"><?php printf( __( '<a href="%1$s" title="Manage Uploads" class="musublink">%2$sMB</a>' ), esc_url( admin_url( 'upload.php' ) ), $quota ); ?></td>
    485485            <td class="t posts"><?php _e( 'Space Allowed' ); ?></td>
    486486        </tr>
     
    490490    <table>
    491491        <tr class="first">
    492             <td class="b b-comments"><?php printf( __( '<a href="%1$s" title="Manage Uploads" class="musublink">%2$sMB (%3$s%%)</a>' ), admin_url( 'upload.php' ), $used, $percentused ); ?></td>
     492            <td class="b b-comments"><?php printf( __( '<a href="%1$s" title="Manage Uploads" class="musublink">%2$sMB (%3$s%%)</a>' ), esc_url( admin_url( 'upload.php' ) ), $used, $percentused ); ?></td>
    493493            <td class="last t comments <?php echo $used_color;?>"><?php _e( 'Space Used' );?></td>
    494494        </tr>
     
    710710        return false;
    711711    if ( get_site_option( 'wpmu_upgrade_site' ) != $wp_db_version )
    712         echo "<div class='update-nag'>" . sprintf( __( 'Thank you for Updating! Please visit the <a href="%s">Update Network</a> page to update all your sites.' ), admin_url( 'ms-upgrade-network.php' ) ) . "</div>";
     712        echo "<div class='update-nag'>" . sprintf( __( 'Thank you for Updating! Please visit the <a href="%s">Update Network</a> page to update all your sites.' ), esc_url( admin_url( 'ms-upgrade-network.php' ) ) ) . "</div>";
    713713}
    714714add_action( 'admin_notices', 'site_admin_notice' );
     
    755755                    if ( $primary_blog == $blog->userblog_id )
    756756                        $found = true;
    757                     ?><option value="<?php echo $blog->userblog_id ?>"<?php selected( $primary_blog,  $blog->userblog_id ); ?>><?php echo get_home_url( $blog->userblog_id ) ?></option><?php
     757                    ?><option value="<?php echo $blog->userblog_id ?>"<?php selected( $primary_blog,  $blog->userblog_id ); ?>><?php echo esc_url( get_home_url( $blog->userblog_id ) ) ?></option><?php
    758758                } ?>
    759759            </select>
     
    783783    $mu_media_buttons = get_site_option( 'mu_media_buttons', array() );
    784784    if ( empty($mu_media_buttons['image']) && current_theme_supports( 'post-thumbnails' ) ) {
    785         echo "<div class='update-nag'>" . sprintf( __( "Warning! The current theme supports Featured Images. You must enable image uploads on <a href='%s'>the options page</a> for it to work." ), admin_url( 'ms-options.php' ) ) . "</div>";
     785        echo "<div class='update-nag'>" . sprintf( __( "Warning! The current theme supports Featured Images. You must enable image uploads on <a href='%s'>the options page</a> for it to work." ), esc_url( admin_url( 'ms-options.php' ) ) ) . "</div>";
    786786    }
    787787}
     
    804804 */
    805805function _admin_notice_multisite_activate_plugins_page() {
    806     $message = sprintf( __( 'The plugins page is not visible to normal users. It must be activated first. %s' ), '<a href="' . admin_url( 'ms-options.php#menu' ) . '">' . __( 'Activate' ) . '</a>' );
     806    $message = sprintf( __( 'The plugins page is not visible to normal users. It must be activated first. %s' ), '<a href="' . esc_url( admin_url( 'ms-options.php#menu' ) ) . '">' . __( 'Activate' ) . '</a>' );
    807807    echo "<div class='error'><p>$message</p></div>";
    808808}
Note: See TracChangeset for help on using the changeset viewer.