Changeset 37136 for branches/4.3/src/wp-includes/taxonomy.php
- Timestamp:
- 03/30/2016 05:22:51 PM (9 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/4.3/src/wp-includes/taxonomy.php
r33877 r37136 626 626 $term_ids = array_map('intval', $term_ids ); 627 627 628 $taxonomies = "'" . implode( "', '", $taxonomies) . "'";628 $taxonomies = "'" . implode( "', '", array_map( 'esc_sql', $taxonomies ) ) . "'"; 629 629 $term_ids = "'" . implode( "', '", $term_ids ) . "'"; 630 630 … … 1811 1811 } 1812 1812 1813 $where = "tt.taxonomy IN ('" . implode("', '", $taxonomies) . "')";1813 $where = "tt.taxonomy IN ('" . implode("', '", array_map( 'esc_sql', $taxonomies ) ) . "')"; 1814 1814 1815 1815 $exclude = $args['exclude']; … … 2740 2740 $taxonomy_array = $taxonomies; 2741 2741 $object_id_array = $object_ids; 2742 $taxonomies = "'" . implode("', '", $taxonomies) . "'";2742 $taxonomies = "'" . implode("', '", array_map( 'esc_sql', $taxonomies ) ) . "'"; 2743 2743 $object_ids = implode(', ', $object_ids); 2744 2744
Note: See TracChangeset
for help on using the changeset viewer.