WordPress.org

Make WordPress Core

Changeset 17141


Ignore:
Timestamp:
12/25/10 17:58:01 (3 years ago)
Author:
nacin
Message:

Tag textareas escaped earlier with textarea_escaped. see #15454.

Location:
trunk/wp-admin
Files:
4 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/edit-tag-form.php

    r17001 r17141  
    6262        <tr class="form-field"> 
    6363            <th scope="row" valign="top"><label for="description"><?php _ex('Description', 'Taxonomy Description'); ?></label></th> 
    64             <td><textarea name="description" id="description" rows="5" cols="50" style="width: 97%;"><?php echo $tag->description; // already escaped ?></textarea><br /> 
     64            <td><textarea name="description" id="description" rows="5" cols="50" style="width: 97%;"><?php echo $tag->description; // textarea_escaped ?></textarea><br /> 
    6565            <span class="description"><?php _e('The description is not prominent by default, however some themes may show it.'); ?></span></td> 
    6666        </tr> 
  • trunk/wp-admin/includes/media.php

    r17120 r17141  
    13441344            $item .= $field[ $field['input'] ]; 
    13451345        elseif ( $field['input'] == 'textarea' ) { 
    1346             if ( user_can_richedit() ) { // already escaped when user_can_richedit() = false 
     1346            if ( user_can_richedit() ) { // textarea_escaped when user_can_richedit() = false 
    13471347                $field['value'] = esc_textarea( $field['value'] ); 
    13481348            } 
  • trunk/wp-admin/includes/meta-boxes.php

    r17113 r17141  
    289289    <div class="nojs-tags hide-if-js"> 
    290290    <p><?php echo $taxonomy->labels->add_or_remove_items; ?></p> 
    291     <textarea name="<?php echo "tax_input[$tax_name]"; ?>" rows="3" cols="20" class="the-tags" id="tax-input-<?php echo $tax_name; ?>" <?php echo $disabled; ?>><?php echo get_terms_to_edit( $post->ID, $tax_name ); // escaped by esc_attr() ?></textarea></div> 
     291    <textarea name="<?php echo "tax_input[$tax_name]"; ?>" rows="3" cols="20" class="the-tags" id="tax-input-<?php echo $tax_name; ?>" <?php echo $disabled; ?>><?php echo get_terms_to_edit( $post->ID, $tax_name ); // textarea_escaped by esc_attr() ?></textarea></div> 
    292292    <?php if ( current_user_can($taxonomy->cap->assign_terms) ) : ?> 
    293293    <div class="ajaxtag hide-if-no-js"> 
     
    384384function post_excerpt_meta_box($post) { 
    385385?> 
    386 <label class="screen-reader-text" for="excerpt"><?php _e('Excerpt') ?></label><textarea rows="1" cols="40" name="excerpt" tabindex="6" id="excerpt"><?php echo $post->post_excerpt; ?></textarea> 
     386<label class="screen-reader-text" for="excerpt"><?php _e('Excerpt') ?></label><textarea rows="1" cols="40" name="excerpt" tabindex="6" id="excerpt"><?php echo $post->post_excerpt; // textarea_escaped ?></textarea> 
    387387<p><?php _e('Excerpts are optional hand-crafted summaries of your content that can be used in your theme. <a href="http://codex.wordpress.org/Excerpt" target="_blank">Learn more about manual excerpts.</a>'); ?></p> 
    388388<?php 
     
    887887    <tr class="form-field"> 
    888888        <th valign="top"  scope="row"><label for="link_notes"><?php _e('Notes') ?></label></th> 
    889         <td><textarea name="link_notes" id="link_notes" cols="50" rows="10" style="width: 95%"><?php echo ( isset( $link->link_notes ) ? $link->link_notes : ''); // escaped ?></textarea></td> 
     889        <td><textarea name="link_notes" id="link_notes" cols="50" rows="10" style="width: 95%"><?php echo ( isset( $link->link_notes ) ? $link->link_notes : ''); // textarea_escaped ?></textarea></td> 
    890890    </tr> 
    891891    <tr class="form-field"> 
  • trunk/wp-admin/user-edit.php

    r17095 r17141  
    355355<tr> 
    356356    <th><label for="description"><?php _e('Biographical Info'); ?></label></th> 
    357     <td><textarea name="description" id="description" rows="5" cols="30"><?php echo $profileuser->description; // escaped ?></textarea><br /> 
     357    <td><textarea name="description" id="description" rows="5" cols="30"><?php echo $profileuser->description; // textarea_escaped ?></textarea><br /> 
    358358    <span class="description"><?php _e('Share a little biographical information to fill out your profile. This may be shown publicly.'); ?></span></td> 
    359359</tr> 
Note: See TracChangeset for help on using the changeset viewer.