[theme-reviewers] Settings API and User-Defined Javascript
Vicky Arulsingam
vicky.arulsingam at gmail.com
Fri Feb 17 02:50:38 UTC 2012
The theme I'm reviewing: http://themes.trac.wordpress.org/ticket/6565 has
theme options that allows the user to define their own javascript code.
By virtue of using Settings API, is a theme protected against XSS
vulnerabilities?
Are there any functions that can be use to sanitize javascript?
-----
Vicky Arulsingam
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wordpress.org/pipermail/theme-reviewers/attachments/20120217/cddfd72e/attachment-0001.htm>
More information about the theme-reviewers
mailing list