diff --git src/wp-content/themes/twentytwelve/image.php src/wp-content/themes/twentytwelve/image.php
index c17067cb23..5b8674dd91 100644
--- src/wp-content/themes/twentytwelve/image.php
+++ src/wp-content/themes/twentytwelve/image.php
@@ -32,11 +32,11 @@ get_header(); ?>
 									esc_attr( get_the_date( 'c' ) ),
 									esc_html( get_the_date() ),
 									esc_url( wp_get_attachment_url() ),
-									$metadata['width'],
-									$metadata['height'],
+									esc_attr( $metadata['width'] ),
+									esc_attr( $metadata['height'] ),
 									esc_url( get_permalink( $post->post_parent ) ),
 									esc_attr( strip_tags( get_the_title( $post->post_parent ) ) ),
-									get_the_title( $post->post_parent )
+									esc_html( get_the_title( $post->post_parent ) )
 								);
 							?>
 							<?php edit_post_link( __( 'Edit', 'twentytwelve' ), '<span class="edit-link">', '</span>' ); ?>