Upstream/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2025-01-05 07:58:35 +01:00
Code Issues Projects Releases Wiki Activity

Add esc_attr to ms-users.php. see #11792

Browse Source 
git-svn-id: http://svn.automattic.com/wordpress/trunk@12621 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
ryan 2010-01-07 00:25:02 +00:00
parent 8ab77e04e7
commit b13380665b
1 changed files with 10 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
wp-admin/ms-users.php
View File

@ -105,8 +105,8 @@ if ( $_GET['updated'] == 'true' ) {
<h2><?php _e( $current_site->site_name ); ?> <?php _e("Users"); ?></h2> <h2><?php _e( $current_site->site_name ); ?> <?php _e("Users"); ?></h2>
<form action="wpmu-users.php" method="get" class="search-form"> <form action="wpmu-users.php" method="get" class="search-form">
<p class="search-box"> <p class="search-box">
<input type="text" name="s" value="<?php if (isset($_GET['s'])) _e( stripslashes( $s ) ); ?>" class="search-input" id="user-search-input" /> <input type="text" name="s" value="<?php if (isset($_GET['s'])) esc_attr( stripslashes( $s ) ); ?>" class="search-input" id="user-search-input" />
<input type="submit" id="post-query-submit" value="<?php _e('Search Users') ?>" class="button" /> <input type="submit" id="post-query-submit" value="<?php esc_attr_e('Search Users') ?>" class="button" />
</p> </p>
</form> </form>
</div> </div>
@ -116,9 +116,9 @@ if ( $_GET['updated'] == 'true' ) {
<?php if ( $user_navigation ) echo "<div class='tablenav-pages'>$user_navigation</div>"; ?> <?php if ( $user_navigation ) echo "<div class='tablenav-pages'>$user_navigation</div>"; ?>
<div class="alignleft actions"> <div class="alignleft actions">
<input type="submit" value="<?php _e('Delete') ?>" name="alluser_delete" class="button-secondary delete" /> <input type="submit" value="<?php esc_attr_e('Delete') ?>" name="alluser_delete" class="button-secondary delete" />
<input type="submit" value="<?php _e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" /> <input type="submit" value="<?php esc_attr_e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" />
<input type="submit" value="<?php _e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" /> <input type="submit" value="<?php esc_attr_e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" />
<?php wp_nonce_field( 'allusers' ); ?> <?php wp_nonce_field( 'allusers' ); ?>
<br class="clear" /> <br class="clear" />
</div> </div>
@ -176,7 +176,7 @@ if ( $_GET['updated'] == 'true' ) {
foreach( (array) $posts_columns as $column_name=>$column_display_name) : foreach( (array) $posts_columns as $column_name=>$column_display_name) :
switch($column_name) { switch($column_name) {
case 'checkbox': ?> case 'checkbox': ?>
<th scope="row" class="check-column"><input type='checkbox' id='user_<?php echo $user['ID'] ?>' name='allusers[]' value='<?php echo $user['ID'] ?>' /></th> <th scope="row" class="check-column"><input type='checkbox' id='user_<?php echo $user['ID'] ?>' name='allusers[]' value='<?php echo esc_attr($user['ID']) ?>' /></th>
<?php <?php
break; break;
@ -265,9 +265,9 @@ if ( $_GET['updated'] == 'true' ) {
<?php if ( $user_navigation ) echo "<div class='tablenav-pages'>$user_navigation</div>"; ?> <?php if ( $user_navigation ) echo "<div class='tablenav-pages'>$user_navigation</div>"; ?>
<div class="alignleft"> <div class="alignleft">
<input type="submit" value="<?php _e('Delete') ?>" name="alluser_delete" class="button-secondary delete" /> <input type="submit" value="<?php esc_attr_e('Delete') ?>" name="alluser_delete" class="button-secondary delete" />
<input type="submit" value="<?php _e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" /> <input type="submit" value="<?php esc_attr_e('Mark as Spammers') ?>" name="alluser_spam" class="button-secondary" />
<input type="submit" value="<?php _e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" /> <input type="submit" value="<?php esc_attr_e('Not Spam') ?>" name="alluser_notspam" class="button-secondary" />
<?php wp_nonce_field( 'allusers' ); ?> <?php wp_nonce_field( 'allusers' ); ?>
<br class="clear" /> <br class="clear" />
</div> </div>
@ -296,7 +296,7 @@ if( apply_filters('show_adduser_fields', true) ) :
</table> </table>
<p class="submit"> <p class="submit">
<?php wp_nonce_field('add-user') ?> <?php wp_nonce_field('add-user') ?>
<input class="button" type="submit" name="Add user" value="<?php _e('Add user') ?>" /></p> <input class="button" type="submit" name="Add user" value="<?php esc_attr_e('Add user') ?>" /></p>
</form> </form>
</div> </div>
<?php endif; ?> <?php endif; ?>