Skip to:
Content

bbPress.org


Ignore:
Timestamp:
11/10/2014 05:37:29 PM (7 years ago)
Author:
johnjamesjacoby
Message:

Improve form field output sanitization when posting theme-side forum/topic/reply content. Thanks planetzuda. See #2719.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/includes/core/filters.php

    r5466 r5558  
    171171add_filter( 'bbp_get_form_reply_content', 'trim'                   );
    172172
     173// Form input output - sanitize
     174add_filter( 'bbp_get_form_reply_edit_reason', 'esc_attr' );
     175add_filter( 'bbp_get_form_reply_edit_reason', 'trim'     );
     176add_filter( 'bbp_get_form_topic_edit_reason', 'esc_attr' );
     177add_filter( 'bbp_get_form_topic_edit_reason', 'trim'     );
     178
    173179// Add number format filter to functions requiring numeric output
    174180add_filter( 'bbp_get_user_topic_count',     'bbp_number_format', 10 );
Note: See TracChangeset for help on using the changeset viewer.