sergiotarxz/Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add a prophylactic specialchars to the object in explain nonce. see #5838

Browse Source 
git-svn-id: https://develop.svn.wordpress.org/trunk@6817 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Ryan Boren 2008-02-13 18:14:38 +00:00
parent 7886e5c6e0
commit d809dcd103
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
wp-includes/functions.php
View File

@ -1256,7 +1256,7 @@ function wp_explain_nonce( $action ) {
$object = $matches[4];
if ( 'use_id' != $lookup )
$object = call_user_func( $lookup, $object );
return sprintf( $trans[$verb][$noun][0], $object );
return sprintf( $trans[$verb][$noun][0], wp_specialchars($object) );
} else {
return $trans[$verb][$noun][0];
}