Changeset 5059

Show
Ignore:
Timestamp:
03/18/07 23:04:22 (1 year ago)
Author:
ryan
Message:

escape pagenow. Props xknown. fixes #3988 for trunk

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/wp-admin/admin-header.php

    r4982 r5059  
    33if (!isset($_GET["page"])) require_once('admin.php'); 
    44if ( $editing ) { 
    5     wp_enqueue_script( array("dbx-admin-key?pagenow=$pagenow",'admin-custom-fields') ); 
     5    wp_enqueue_script( array('dbx-admin-key?pagenow=' . attribute_escape($pagenow),'admin-custom-fields') ); 
    66    if ( current_user_can('manage_categories') ) 
    77        wp_enqueue_script( 'ajaxcat' );