Make WordPress Core


Ignore:
Timestamp:
12/06/2024 05:05:39 PM (2 months ago)
Author:
SergeyBiryukov
Message:

Coding Standards: Use correct escaping function for wp_http_referer.

Follow-up to [58069].

Props yogeshbhutkar, sainathpoojary, PcTevree, knutsp, siliconforks, stromhalm, shanemuir.
Fixes #62551.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/wp-admin/edit-tag-form.php

    r58918 r59496  
    4545}
    4646
    47 $wp_http_referer = ! empty( $_REQUEST['wp_http_referer'] ) ? sanitize_text_field( $_REQUEST['wp_http_referer'] ) : '';
     47$wp_http_referer = ! empty( $_REQUEST['wp_http_referer'] ) ? sanitize_url( $_REQUEST['wp_http_referer'] ) : '';
    4848$wp_http_referer = remove_query_arg( array( 'action', 'message', 'tag_ID' ), $wp_http_referer );
    4949
Note: See TracChangeset for help on using the changeset viewer.