From 006284f92517af9a036359c10cb5d149dc3dbe4a Mon Sep 17 00:00:00 2001
From: ryan <ryan@1a063a9b-81f0-0310-95a4-ce76da25c4cd>
Date: Wed, 5 Jul 2006 09:52:18 +0000
Subject: [PATCH] wp_specialchars() within wp_nonce_url().  Props Nazgul. fixes
 #2857

git-svn-id: http://svn.automattic.com/wordpress/branches/2.0@3973 1a063a9b-81f0-0310-95a4-ce76da25c4cd
---
 wp-includes/functions.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/wp-includes/functions.php b/wp-includes/functions.php
index b4eb57fb9a..8db6b46757 100644
--- a/wp-includes/functions.php
+++ b/wp-includes/functions.php
@@ -2316,7 +2316,7 @@ function get_num_queries() {
 }
 
 function wp_nonce_url($actionurl, $action = -1) {
-	return add_query_arg('_wpnonce', wp_create_nonce($action), $actionurl);
+	return wp_specialchars(add_query_arg('_wpnonce', wp_create_nonce($action), $actionurl));
 }
 
 function wp_nonce_field($action = -1) {