WordPress.org

Make WordPress Core

Changeset 17141


Ignore:
Timestamp:
12/25/2010 05:58:01 PM (10 years ago)
Author:
nacin
Message:

Tag textareas escaped earlier with textarea_escaped. see #15454.

Location:
trunk/wp-admin
Files:
4 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/edit-tag-form.php

    r17001 r17141  
    6262        <tr class="form-field">
    6363            <th scope="row" valign="top"><label for="description"><?php _ex('Description', 'Taxonomy Description'); ?></label></th>
    64             <td><textarea name="description" id="description" rows="5" cols="50" style="width: 97%;"><?php echo $tag->description; // already escaped ?></textarea><br />
     64            <td><textarea name="description" id="description" rows="5" cols="50" style="width: 97%;"><?php echo $tag->description; // textarea_escaped ?></textarea><br />
    6565            <span class="description"><?php _e('The description is not prominent by default, however some themes may show it.'); ?></span></td>
    6666        </tr>
  • trunk/wp-admin/includes/media.php

    r17120 r17141  
    13441344            $item .= $field[ $field['input'] ];
    13451345        elseif ( $field['input'] == 'textarea' ) {
    1346             if ( user_can_richedit() ) { // already escaped when user_can_richedit() = false
     1346            if ( user_can_richedit() ) { // textarea_escaped when user_can_richedit() = false
    13471347                $field['value'] = esc_textarea( $field['value'] );
    13481348            }
  • trunk/wp-admin/includes/meta-boxes.php

    r17113 r17141  
    289289    <div class="nojs-tags hide-if-js">
    290290    <p><?php echo $taxonomy->labels->add_or_remove_items; ?></p>
    291     <textarea name="<?php echo "tax_input[$tax_name]"; ?>" rows="3" cols="20" class="the-tags" id="tax-input-<?php echo $tax_name; ?>" <?php echo $disabled; ?>><?php echo get_terms_to_edit( $post->ID, $tax_name ); // escaped by esc_attr() ?></textarea></div>
     291    <textarea name="<?php echo "tax_input[$tax_name]"; ?>" rows="3" cols="20" class="the-tags" id="tax-input-<?php echo $tax_name; ?>" <?php echo $disabled; ?>><?php echo get_terms_to_edit( $post->ID, $tax_name ); // textarea_escaped by esc_attr() ?></textarea></div>
    292292    <?php if ( current_user_can($taxonomy->cap->assign_terms) ) : ?>
    293293    <div class="ajaxtag hide-if-no-js">
     
    384384function post_excerpt_meta_box($post) {
    385385?>
    386 <label class="screen-reader-text" for="excerpt"><?php _e('Excerpt') ?></label><textarea rows="1" cols="40" name="excerpt" tabindex="6" id="excerpt"><?php echo $post->post_excerpt; ?></textarea>
     386<label class="screen-reader-text" for="excerpt"><?php _e('Excerpt') ?></label><textarea rows="1" cols="40" name="excerpt" tabindex="6" id="excerpt"><?php echo $post->post_excerpt; // textarea_escaped ?></textarea>
    387387<p><?php _e('Excerpts are optional hand-crafted summaries of your content that can be used in your theme. <a href="http://codex.wordpress.org/Excerpt" target="_blank">Learn more about manual excerpts.</a>'); ?></p>
    388388<?php
     
    887887    <tr class="form-field">
    888888        <th valign="top"  scope="row"><label for="link_notes"><?php _e('Notes') ?></label></th>
    889         <td><textarea name="link_notes" id="link_notes" cols="50" rows="10" style="width: 95%"><?php echo ( isset( $link->link_notes ) ? $link->link_notes : ''); // escaped ?></textarea></td>
     889        <td><textarea name="link_notes" id="link_notes" cols="50" rows="10" style="width: 95%"><?php echo ( isset( $link->link_notes ) ? $link->link_notes : ''); // textarea_escaped ?></textarea></td>
    890890    </tr>
    891891    <tr class="form-field">
  • trunk/wp-admin/user-edit.php

    r17095 r17141  
    355355<tr>
    356356    <th><label for="description"><?php _e('Biographical Info'); ?></label></th>
    357     <td><textarea name="description" id="description" rows="5" cols="30"><?php echo $profileuser->description; // escaped ?></textarea><br />
     357    <td><textarea name="description" id="description" rows="5" cols="30"><?php echo $profileuser->description; // textarea_escaped ?></textarea><br />
    358358    <span class="description"><?php _e('Share a little biographical information to fill out your profile. This may be shown publicly.'); ?></span></td>
    359359</tr>
Note: See TracChangeset for help on using the changeset viewer.