Make WordPress Core


Ignore:
Timestamp:
11/14/2010 05:33:16 PM (14 years ago)
Author:
nacin
Message:

Some escaping

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/includes/file.php

    r16061 r16366  
    967967        if ( is_wp_error($error) )
    968968            $error_string = $error->get_error_message();
    969         echo '<div id="message" class="error"><p>' . $error_string . '</p></div>';
     969        echo '<div id="message" class="error"><p>' . esc_html( $error_string ) . '</p></div>';
    970970    }
    971971
Note: See TracChangeset for help on using the changeset viewer.