WordPress-C/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2025-02-20 13:38:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
WordPress/wp-admin
History
markjaquith 7ed5ba96ac Sanitize cat_id, fixes #4691 for 2.0.x 
git-svn-id: http://svn.automattic.com/wordpress/branches/2.0@5841 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-08-02 15:23:12 +00:00
..
images
Nice curves. Props ketsugi. fixes #2896
2006-07-06 06:35:28 +00:00
import
Add nonces to importers
2007-05-07 16:10:20 +00:00
admin-db.php
Some int casts
2007-03-25 23:06:28 +00:00
admin-footer.php
allow timer_stop() to use number_format() when returning. Props mdawaffe and nbachiyski. fixes #991
2006-10-04 22:00:26 +00:00
admin-functions.php
Prevent editing of protected meta keys for 2.0.x
2007-06-20 19:21:08 +00:00
admin-header.php
admin.php
Menu and plugin tweaks.
2006-07-26 22:56:56 +00:00
bookmarklet.php
use clean_url() instead of attribute_escape() when dealing with src/href to protect against XSS. props xknown. fixes #3986 for 2.0.
2007-03-17 09:04:56 +00:00
cat-js.php
categories.php
new function for escaping within attributes: attribute_escape()
2006-12-21 10:10:04 +00:00
edit-comments.php
Some int casts
2007-03-25 23:06:28 +00:00
edit-form-advanced.php
attribute_escape()s and int casts for 2.0.x: see #4333
2007-05-25 22:33:48 +00:00
edit-form-ajax-cat.php
edit-form-comment.php
attribute_escape()s and int casts for 2.0.x: see #4333
2007-05-25 22:33:48 +00:00
edit-form.php
attribute_escape()s and int casts for 2.0.x: see #4333
2007-05-25 22:33:48 +00:00
edit-link-form.php
new function for escaping within attributes: attribute_escape()
2006-12-21 10:10:04 +00:00
edit-page-form.php
attribute_escape()s and int casts for 2.0.x: see #4333
2007-05-25 22:33:48 +00:00
edit-pages.php
new function for escaping within attributes: attribute_escape()
2006-12-21 10:10:04 +00:00
edit.php
new function for escaping within attributes: attribute_escape()
2006-12-21 10:10:04 +00:00
execute-pings.php
import.php
Strip and texturize importer title. Props Nazgul. fixes #2897
2006-07-05 22:34:15 +00:00
index.php
pass incoming Technorati links through wptexturize(). Props Nazgul. fixes: #2856
2006-10-04 04:23:34 +00:00
inline-uploading.php
Inline uploader fix from smalldust. fixes #2990
2007-01-09 08:25:39 +00:00
install-helper.php
Giant commit, sorry mailing list people. Move all table names to new $wpdb versions. Works but the whole app needs thorough testing now.
2004-05-24 08:22:18 +00:00
install.php
Less run-on first comment. fixes #3196
2006-10-10 04:48:59 +00:00
link-add.php
link-categories.php
XHTML validation fix in link-categories.php by foolswisdom. fixes #3573
2007-01-30 18:17:25 +00:00
link-import.php
Sanitize cat_id, fixes #4691 for 2.0.x
2007-08-02 15:23:12 +00:00
link-manager.php
new function for escaping within attributes: attribute_escape()
2006-12-21 10:10:04 +00:00
link-parse-opml.php
list-manipulation.js
list-manipulation.php
nonce and comment fixes from Juergen. fixes #2748
2006-05-28 23:33:05 +00:00
menu-header.php
menu.php
case insensitive sorting. props Nazgul. fixes #3108
2006-10-04 03:50:14 +00:00
moderation.php
ID fixes to allow label clicking in the moderation queue, from JeremyVisser. fixes #3391
2006-11-25 06:37:24 +00:00
options-discussion.php
Clarify comment_max_links option text. Props chrisdolan and Nazgul. fixes 1397
2006-10-04 05:07:01 +00:00
options-general.php
Better phrasing for date format text. Props abhay and zedlander. fixes: #2602
2006-10-04 04:37:11 +00:00
options-head.php
options-misc.php
new function for escaping within attributes: attribute_escape()
2006-12-21 10:10:04 +00:00
options-permalink.php
Ensure XHTML validity when presenting mod_rewrite rules for copy-paste. Props JeremyVisser. fixes #3523
2007-01-23 07:51:18 +00:00
options-reading.php
options-writing.php
options.php
Sanitize option names in options.php, use current escaping functions. for 2.0.x
2007-08-01 19:25:33 +00:00
page-new.php
Better notice and link after post/page saving. Props mdawaffe. fixes #1690
2006-10-04 07:47:20 +00:00
plugin-editor.php
Use wp_redirect().
2006-06-27 23:10:02 +00:00
plugins.php
move plugin sorting (by Name) to get_plugins() so that it works for the Edit Plugins page too. fixes: #2412
2006-10-04 09:35:25 +00:00
post.php
attribute_escape()s and int casts for 2.0.x: see #4333
2007-05-25 22:33:48 +00:00
profile-update.php
Update nonce action strings. Props mdawaffe.
2006-05-26 23:31:24 +00:00
profile.php
Make those chars feel special.
2006-09-25 02:09:08 +00:00
setup-config.php
Freshen up setup-config styling.
2006-07-05 02:30:36 +00:00
sidebar.php
Lower case post. Props leftjustified. fixes #2908
2006-07-05 20:16:54 +00:00
templates.php
wp_specialchars() treatment for recent file list
2006-12-27 05:59:20 +00:00
theme-editor.php
new function for escaping within attributes: attribute_escape()
2006-12-21 10:10:04 +00:00
themes.php
Use wp_redirect().
2006-06-27 23:10:02 +00:00
update-links.php
Silence pingomatic fsockopen. Props Mark Jaquith. fixes #2522
2006-06-24 06:04:09 +00:00
upgrade-functions.php
upgrade-schema.php
Add post_status key. fixes #3170
2006-09-26 14:10:10 +00:00
upgrade.php
use clean_url() instead of attribute_escape() when dealing with src/href to protect against XSS. props xknown. fixes #3986 for 2.0.
2007-03-17 09:04:56 +00:00
user-edit.php
Markup fix from quinnhigurashi. fixes #3602
2007-01-30 18:18:34 +00:00
users.php
backport of post-redirect exit() fixes from [4467] and [4468]
2006-11-15 22:23:43 +00:00
wp-admin.css
Don't dbxize wrappers. Props andy. fixes #2987
2006-12-08 22:40:05 +00:00
xfn.js