Show
Ignore:
Timestamp:
12/21/06 10:10:04 (2 years ago)
Author:
markjaquith
Message:

new function for escaping within attributes: attribute_escape()

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/wp-login.php

    r4652 r4656  
    139139    <p> 
    140140        <label><?php _e('Username:') ?><br /> 
    141         <input type="text" name="user_login" id="user_login" class="input" value="<?php echo wp_specialchars(stripslashes($_POST['user_login']), 1); ?>" size="20" tabindex="10" /></label> 
     141        <input type="text" name="user_login" id="user_login" class="input" value="<?php echo attribute_escape(stripslashes($_POST['user_login'])); ?>" size="20" tabindex="10" /></label> 
    142142    </p> 
    143143    <p> 
    144144        <label><?php _e('E-mail:') ?><br /> 
    145         <input type="text" name="user_email" id="user_email" class="input" value="<?php echo wp_specialchars(stripslashes($_POST['user_email']), 1); ?>" size="25" tabindex="20" /></label> 
     145        <input type="text" name="user_email" id="user_email" class="input" value="<?php echo attribute_escape(stripslashes($_POST['user_email'])); ?>" size="25" tabindex="20" /></label> 
    146146    </p> 
    147147<?php do_action('lostpassword_form'); ?> 
     
    258258    <p> 
    259259        <label><?php _e('Username:') ?><br /> 
    260         <input type="text" name="user_login" id="user_login" class="input" value="<?php echo wp_specialchars(stripslashes($user_login), 1); ?>" size="20" tabindex="10" /></label> 
     260        <input type="text" name="user_login" id="user_login" class="input" value="<?php echo attribute_escape(stripslashes($user_login)); ?>" size="20" tabindex="10" /></label> 
    261261    </p> 
    262262    <p> 
    263263        <label><?php _e('E-mail:') ?><br /> 
    264         <input type="text" name="user_email" id="user_email" class="input" value="<?php echo wp_specialchars(stripslashes($user_email), 1); ?>" size="25" tabindex="20" /></label> 
     264        <input type="text" name="user_email" id="user_email" class="input" value="<?php echo attribute_escape(stripslashes($user_email)); ?>" size="25" tabindex="20" /></label> 
    265265    </p> 
    266266<?php do_action('register_form'); ?> 
     
    345345    <p> 
    346346        <label><?php _e('Username:') ?><br /> 
    347         <input type="text" name="log" id="user_login" class="input" value="<?php echo wp_specialchars(stripslashes($user_login), 1); ?>" size="20" tabindex="10" /></label> 
     347        <input type="text" name="log" id="user_login" class="input" value="<?php echo attribute_escape(stripslashes($user_login)); ?>" size="20" tabindex="10" /></label> 
    348348    </p> 
    349349    <p> 
     
    355355    <p class="submit"> 
    356356        <input type="submit" name="submit" id="submit" value="<?php _e('Login'); ?> &raquo;" tabindex="100" /> 
    357         <input type="hidden" name="redirect_to" value="<?php echo wp_specialchars($redirect_to); ?>" /> 
     357        <input type="hidden" name="redirect_to" value="<?php echo attribute_escape($redirect_to); ?>" /> 
    358358    </p> 
    359359</form>