Changeset 44824
Legend:
- Unmodified
- Added
- Removed
-
trunk/src/wp-admin/includes/file.php
r44635 r44824 1957 1957 */ 1958 1958 function wp_privacy_generate_personal_data_export_group_html( $group_data ) { 1959 $allowed_tags = array( 1960 'a' => array( 1961 'href' => array(), 1962 'target' => array(), 1963 ), 1964 'br' => array(), 1965 ); 1966 $allowed_protocols = array( 'http', 'https' ); 1967 $group_html = ''; 1968 1969 $group_html .= '<h2>' . esc_html( $group_data['group_label'] ) . '</h2>'; 1959 $group_html = '<h2>' . esc_html( $group_data['group_label'] ) . '</h2>'; 1970 1960 $group_html .= '<div>'; 1971 1961 … … 1976 1966 foreach ( (array) $group_item_data as $group_item_datum ) { 1977 1967 $value = $group_item_datum['value']; 1978 // If it looks like a link, make it a link 1968 // If it looks like a link, make it a link. 1979 1969 if ( false === strpos( $value, ' ' ) && ( 0 === strpos( $value, 'http://' ) || 0 === strpos( $value, 'https://' ) ) ) { 1980 1970 $value = '<a href="' . esc_url( $value ) . '">' . esc_html( $value ) . '</a>'; … … 1983 1973 $group_html .= '<tr>'; 1984 1974 $group_html .= '<th>' . esc_html( $group_item_datum['name'] ) . '</th>'; 1985 $group_html .= '<td>' . wp_kses( $value, $allowed_tags, $allowed_protocols) . '</td>';1975 $group_html .= '<td>' . wp_kses( $value, 'personal_data_export' ) . '</td>'; 1986 1976 $group_html .= '</tr>'; 1987 1977 }
Note: See TracChangeset
for help on using the changeset viewer.