WordPress.org
Get WordPress

Plugin Directory

Changeset 3006053


Ignore:
Timestamp:
12/06/2023 08:05:45 AM (2 years ago)
Author:
powr
Message:

Security patch to sanitize input with esc_attr() function

File:
1 edited

Legend:

Unmodified
Added
Removed

  • powr-pack/trunk/src/pack.php

    r3005995 r3006053  
    195195function powr_powr_pack_shortcode( $atts ){
    196196  if(isset($atts['id'])){
    197     $id = sanitize_text_field($atts['id']);
     197    $id = esc_attr($atts['id']);
    198198    return "<div class='powr-powr-pack' id='$id'></div>";
    199199  }else if(isset($atts['label'])){
    200     $label = sanitize_text_field($atts['label']);
     200    $label = esc_attr($atts['label']);
    201201    return "<div class='powr-powr-pack' label='$label'></div>";
    202202  }else{
Note: See TracChangeset for help on using the changeset viewer.