Make WordPress Core

Changeset 41398


Ignore:
Timestamp:
09/19/2017 09:12:27 AM (7 years ago)
Author:
ocean90
Message:

Taxonomy/Users: Provide a fallback for incorrect HTTP referrers.

Location:
trunk/src/wp-admin
Files:
2 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/wp-admin/edit-tag-form.php

    r40668 r41398  
    7575    <p><strong><?php echo $message; ?></strong></p>
    7676    <?php if ( $wp_http_referer ) { ?>
    77     <p><a href="<?php echo esc_url( $wp_http_referer ); ?>"><?php
     77    <p><a href="<?php echo esc_url( wp_validate_redirect( wp_sanitize_redirect( $wp_http_referer ), admin_url( 'term.php?taxonomy=' . $taxonomy ) ) ); ?>"><?php
    7878        /* translators: %s: taxonomy name */
    7979        printf( _x( '&larr; Back to %s', 'admin screen' ), $tax->labels->name );
  • trunk/src/wp-admin/user-edit.php

    r41376 r41398  
    190190    <?php endif; ?>
    191191    <?php if ( $wp_http_referer && false === strpos( $wp_http_referer, 'user-new.php' ) && ! IS_PROFILE_PAGE ) : ?>
    192     <p><a href="<?php echo esc_url( $wp_http_referer ); ?>"><?php _e('&larr; Back to Users'); ?></a></p>
     192    <p><a href="<?php echo esc_url( wp_validate_redirect( wp_sanitize_redirect( $wp_http_referer ), self_admin_url( 'users.php' ) ) ); ?>"><?php _e('&larr; Back to Users'); ?></a></p>
    193193    <?php endif; ?>
    194194</div>
Note: See TracChangeset for help on using the changeset viewer.