Make WordPress Core

Changeset 5679


Ignore:
Timestamp:
06/11/2007 10:41:47 PM (17 years ago)
Author:
ryan
Message:

attribute_escape REQUEST_URI

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-content/themes/default/functions.php

    r5468 r5679  
    385385        </div>
    386386        <div id="jsForm">
    387             <form style="display:inline;" method="post" name="hicolor" id="hicolor" action="<?php echo $_SERVER['REQUEST_URI']; ?>">
     387            <form style="display:inline;" method="post" name="hicolor" id="hicolor" action="<?php echo attribute_escape($_SERVER['REQUEST_URI']); ?>">
    388388                <?php wp_nonce_field('kubrick-header'); ?>
    389389    <input type="button" onclick="tgt=document.getElementById('fontcolor');colorSelect(tgt,'pick1');return false;" name="pick1" id="pick1" value="<?php echo attribute_escape(__('Font Color')); ?>"></input>
Note: See TracChangeset for help on using the changeset viewer.