[wp-trac] [WordPress Trac] #54255: Use esc_html() to escaping variable in about page
WordPress Trac
noreply at wordpress.org
Thu Oct 14 09:28:20 UTC 2021
#54255: Use esc_html() to escaping variable in about page
-------------------------------------+-------------------------------
Reporter: sayedulsayem | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: 5.9
Component: Help/About | Version:
Severity: normal | Resolution:
Keywords: has-patch needs-refresh | Focuses: coding-standards
-------------------------------------+-------------------------------
Changes (by mukesh27):
* keywords: has-patch commit => has-patch needs-refresh
Comment:
Hi there, Thanks for the ticket and patch!
Please add brackets before and after `$display_version`?
{{{
<?php echo esc_html( $display_version ); ?>
}}}
Remove `commit` for now.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/54255#comment:6>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list