WordPress.org

Plugin Directory

Changeset 325776


Ignore:
Timestamp:
12/23/10 22:15:45 (3 years ago)
Author:
lessbloat
Message:

Changed htmlspecialchars() references to esc_html()

File:
1 edited

Legend:

Unmodified
Added
Removed
  • grunion-contact-form/trunk/grunion-contact-form.php

    r325771 r325776  
    418418    foreach ( $extra_values as $label => $value ) { 
    419419        $extra_content .= $label . ': ' . trim($value) . "\n"; 
    420         $extra_content_br .= $label . ': ' . htmlspecialchars(trim($value)) . "<br />"; 
     420        $extra_content_br .= $label . ': ' . esc_html(trim($value)) . "<br />"; 
    421421    } 
    422422 
     
    433433    // Construct message that is returned to user 
    434434    $contact_form_message = "<blockquote>"; 
    435     if (isset($comment_author_label)) $contact_form_message .= $comment_author_label . ": " . htmlspecialchars($comment_author) . "<br />"; 
    436     if (isset($comment_author_email_label)) $contact_form_message .= $comment_author_email_label . ": " . htmlspecialchars($comment_author_email) . "<br />";  
    437     if (isset($comment_author_url_label)) $contact_form_message .= $comment_author_url_label . ": " . htmlspecialchars($comment_author_url) . "<br />"; 
    438     if (isset($comment_content_label)) $contact_form_message .= $comment_content_label . ": " . htmlspecialchars($comment_content) . "<br />"; 
     435    if (isset($comment_author_label)) $contact_form_message .= $comment_author_label . ": " . esc_html($comment_author) . "<br />"; 
     436    if (isset($comment_author_email_label)) $contact_form_message .= $comment_author_email_label . ": " . esc_html($comment_author_email) . "<br />";  
     437    if (isset($comment_author_url_label)) $contact_form_message .= $comment_author_url_label . ": " . esc_html($comment_author_url) . "<br />"; 
     438    if (isset($comment_content_label)) $contact_form_message .= $comment_content_label . ": " . esc_html($comment_content) . "<br />"; 
    439439    if (isset($extra_content_br)) $contact_form_message .= $extra_content_br; 
    440440    $contact_form_message .= "</blockquote><br /><br />"; 
Note: See TracChangeset for help on using the changeset viewer.