Skip to:
Content

BuddyPress.org

Changeset 12549


Ignore:
Timestamp:
01/31/2020 04:32:54 PM (9 months ago)
Author:
mercime
Message:

Admin: Sanitize external links to activated BP component pages.

Props imath.
See #8235.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/bp-core/admin/bp-core-admin-slugs.php

    r12541 r12549  
    146146                            <?php if ( !empty( $existing_pages[$name] ) ) : ?>
    147147
    148                                 <a href="<?php echo get_permalink( $existing_pages[$name] ); ?>" class="button-secondary" target="_bp"><?php _e( 'View', 'buddypress' ); ?></a>
     148                                <a href="<?php echo esc_url( get_permalink( $existing_pages[$name] ) ); ?>" class="button-secondary" target="_bp"><?php _e( 'View', 'buddypress' ); ?></a>
    149149
    150150                            <?php endif; ?>
Note: See TracChangeset for help on using the changeset viewer.