golem
/
twentyGOLEM
9
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

attribute_escape content before stuffing it in value attribute. Props Dan Coulter. fixes #3919 

git-svn-id: http://svn.automattic.com/wordpress/trunk@4986 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
ryan 2007-03-07 04:29:45 +00:00
parent b9c75476a4
commit 8338d6c203
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
wp-admin/upload-functions.php
View File

@ -18,7 +18,7 @@ function wp_upload_display( $dims = false, $href = '' ) {
the_title();
$post_title = attribute_escape(ob_get_contents());
ob_end_clean();
$post_content = apply_filters( 'content_edit_pre', $post->post_content );
$post_content = attribute_escape(apply_filters( 'content_edit_pre', $post->post_content ));
$class = 'text';
$innerHTML = get_attachment_innerHTML( $id, false, $dims );