Opened 12 years ago
Closed 12 years ago
#20687 closed defect (bug) (fixed)
Theme Customizer: Site Title & Tagline Escaped Too Far
Reported by: | Viper007Bond | Owned by: | koopersmith |
---|---|---|---|
Milestone: | 3.4 | Priority: | normal |
Severity: | normal | Version: | 3.4 |
Component: | Customize | Keywords: | needs-patch |
Focuses: | Cc: |
Description
Quotes, both single and double, in both the site title and tagline are escaped too far. Double quotes end up being "
in the input field.
Change History (4)
#2
@
12 years ago
- Owner set to koopersmith
- Status changed from new to assigned
Oh actually this is entirely a Javascript issue.
The <input>
's value
is correct -- it's only escaped once. esc_attr()
is rightly not double escaping it.
If you disable Javascript and then disable CSS (so you can see the collapsed input), then you can see it working correctly.
However when the Javascript pulls the value out of the HTML and fills the field in with it or whatever it does, it's not decoding HTML entities which causes the issue.
Note: See
TracTickets for help on using
tickets.
Oh, this is because they are stored in the database escaped. Lame.