Changeset 4656 for trunk/wp-includes/comment.php

Timestamp:

12/21/2006 10:10:04 AM (19 years ago)

Author:

markjaquith

Message:

new function for escaping within attributes: attribute_escape()

File:

• trunk/wp-includes/comment.php (modified) (3 diffs)

trunk/wp-includes/comment.php

@@ -156 +156 @@
         $comment_author = apply_filters('pre_comment_author_name', $_COOKIE['comment_author_'.COOKIEHASH]);
         $comment_author = stripslashes($comment_author);
-        $comment_author = wp_specialchars($comment_author, true);
+        $comment_author = attribute_escape($comment_author);
         $_COOKIE['comment_author_'.COOKIEHASH] = $comment_author;
     }
@@ -163 +163 @@
         $comment_author_email = apply_filters('pre_comment_author_email', $_COOKIE['comment_author_email_'.COOKIEHASH]);
         $comment_author_email = stripslashes($comment_author_email);
-        $comment_author_email = wp_specialchars($comment_author_email, true);
+        $comment_author_email = attribute_escape($comment_author_email);
         $_COOKIE['comment_author_email_'.COOKIEHASH] = $comment_author_email;
     }
@@ -170 +170 @@
         $comment_author_url = apply_filters('pre_comment_author_url', $_COOKIE['comment_author_url_'.COOKIEHASH]);
         $comment_author_url = stripslashes($comment_author_url);
-        $comment_author_url = wp_specialchars($comment_author_url, true);
+        $comment_author_url = attribute_escape($comment_author_url);
         $_COOKIE['comment_author_url_'.COOKIEHASH] = $comment_author_url;
     }