Make WordPress Core

Changeset 16993


Ignore:
Timestamp:
12/16/2010 09:24:22 AM (14 years ago)
Author:
markjaquith
Message:

Use ENT_QUOTES in esc_textarea() in case someone uses it in a value= situation by accident. see #15454

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-includes/formatting.php

    r16948 r16993  
    23692369 */
    23702370function esc_textarea( $text ) {
    2371     $safe_text = htmlspecialchars( $text );
     2371    $safe_text = htmlspecialchars( $text, ENT_QUOTES );
    23722372    return apply_filters( 'esc_textarea', $safe_text, $text );
    23732373}
Note: See TracChangeset for help on using the changeset viewer.