attribute_escape REQUEST_URI

git-svn-id: https://develop.svn.wordpress.org/branches/2.0@5680 602fd350-edb4-49c9-b593-d223f7449a82
2025-01-17 21:08:44 +01:00 · 2007-06-11 22:43:27 +00:00 · 2007-06-11 22:43:27 +00:00 · 79232e62e3
commit 79232e62e3
parent 1848248e7e
2 changed files with 2 additions and 2 deletions
--- a/wp-content/themes/default/functions.php
+++ b/wp-content/themes/default/functions.php
@ -377,7 +377,7 @@ function kubrick_theme_page() {
 			</form>
 		</div>
 		<div id="jsForm">
-			<form style="display:inline;" method="post" name="hicolor" id="hicolor" action="<?php echo $_SERVER['REQUEST_URI']; ?>">
+			<form style="display:inline;" method="post" name="hicolor" id="hicolor" action="<?php echo attribute_escape($_SERVER['REQUEST_URI']); ?>">
 				<?php wp_nonce_field('kubrick-header'); ?>
 				<input type="button" onclick="tgt=document.getElementById('fontcolor');colorSelect(tgt,'pick1');return false;" name="pick1" id="pick1" value="Font Color"></input>
 				<input type="button" onclick="tgt=document.getElementById('uppercolor');colorSelect(tgt,'pick2');return false;" name="pick2" id="pick2" value="Upper Color"></input>
--- a/wp-includes/version.php
+++ b/wp-includes/version.php
@ -2,7 +2,7 @@
 // This just holds the version number, in a separate file so we can bump it without cluttering the SVN
-$wp_version = '2.0.11-RC2';
+$wp_version = '2.0.11-RC3';
 $wp_db_version = 3441;
 ?>