Make WordPress Core


Ignore:
Timestamp:
11/17/2010 05:12:01 PM (14 years ago)
Author:
markjaquith
Message:

esc_textarea() and application for obvious textarea escaping. props alexkingorg. fixes #15454

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/includes/class-wp-comments-list-table.php

    r16375 r16431  
    351351        if ( $user_can ) { ?>
    352352        <div id="inline-<?php echo $comment->comment_ID; ?>" class="hidden">
    353         <textarea class="comment" rows="1" cols="1"><?php echo esc_html( apply_filters( 'comment_edit_pre', $comment->comment_content ) ); ?></textarea>
     353        <textarea class="comment" rows="1" cols="1"><?php echo esc_textarea( apply_filters( 'comment_edit_pre', $comment->comment_content ) ); ?></textarea>
    354354        <div class="author-email"><?php echo esc_attr( $comment->comment_author_email ); ?></div>
    355355        <div class="author"><?php echo esc_attr( $comment->comment_author ); ?></div>
Note: See TracChangeset for help on using the changeset viewer.