Changeset 7965 for trunk/bp-templates/bp-legacy/buddypress/activity/entry.php

Timestamp:

02/22/2014 03:50:03 PM (12 years ago)

Author:

djpaul

Message:

Improve string and textarea output escaping throughout BuddyPress.

File:

• trunk/bp-templates/bp-legacy/buddypress/activity/entry.php (modified) (2 diffs)

trunk/bp-templates/bp-legacy/buddypress/activity/entry.php

@@ -48 +48 @@
             <?php if ( bp_get_activity_type() == 'activity_comment' ) : ?>
 
-                <a href="<?php bp_activity_thread_permalink(); ?>" class="button view bp-secondary-action" title="<?php _e( 'View Conversation', 'buddypress' ); ?>"><?php _e( 'View Conversation', 'buddypress' ); ?></a>
+                <a href="<?php bp_activity_thread_permalink(); ?>" class="button view bp-secondary-action" title="<?php esc_attr_e( 'View Conversation', 'buddypress' ); ?>"><?php _e( 'View Conversation', 'buddypress' ); ?></a>
 
             <?php endif; ?>
@@ -100 +100 @@
                             <textarea id="ac-input-<?php bp_activity_id(); ?>" class="ac-input" name="ac_input_<?php bp_activity_id(); ?>"></textarea>
                         </div>
-                        <input type="submit" name="ac_form_submit" value="<?php _e( 'Post', 'buddypress' ); ?>" /> &nbsp; <a href="#" class="ac-reply-cancel"><?php _e( 'Cancel', 'buddypress' ); ?></a>
+                        <input type="submit" name="ac_form_submit" value="<?php esc_attr_e( 'Post', 'buddypress' ); ?>" /> &nbsp; <a href="#" class="ac-reply-cancel"><?php _e( 'Cancel', 'buddypress' ); ?></a>
                         <input type="hidden" name="comment_form_id" value="<?php bp_activity_id(); ?>" />
                     </div>