[wp-trac] [WordPress Trac] #23664: Add esc_url() to header_image()
WordPress Trac
noreply at wordpress.org
Sat Mar 2 03:21:29 UTC 2013
#23664: Add esc_url() to header_image()
----------------------------+-------------------------
Reporter: SergeyBiryukov | Type: enhancement
Status: new | Priority: normal
Milestone: 3.6 | Component: Themes
Version: | Severity: normal
Keywords: has-patch |
----------------------------+-------------------------
Spotted this in Twenty Thirteen: `esc_url( header_image() )` (see #23663).
It doesn't work as intended, since header_image() echoes the value
directly: [[BR]]
http://core.trac.wordpress.org/browser/tags/3.5.1/wp-
includes/theme.php#L983
I guess we should add `esc_url()` to `header_image()` itself, like we did
in [14949] for `the_guid()` and in [23527] for `the_permalink()`.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/23664>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list