missing esc added

2021-11-01 19:17:17 +00:00 · 2021-11-01 19:17:17 +00:00 · 8b167c45e5
parent 15720d0ceb
commit 8b167c45e5
11 changed files with 72 additions and 76 deletions
--- a/inc/mep_event_meta.php
+++ b/inc/mep_event_meta.php
@ -229,7 +229,7 @@ class MP_Event_All_Info_In_One
 		<div class="mp_form_area">
 			<div class="mp_form_item">
 				<label>
-					<input type="checkbox" name='mep_sgm' value='1' <?php echo $map_visible > 0 ? esc_attr('checked') : ''; ?>>
+					<input type="checkbox" name='mep_sgm' value='1' <?php echo esc_attr($map_visible) > 0 ? esc_attr('checked') : ''; ?>>
 					<span><?php esc_html_e('Show Google Map ', 'mage-eventpress'); ?></span>
 				</label>
 				<?php
@ -416,8 +416,8 @@ class MP_Event_All_Info_In_One
 						<?php do_action('mep_pricing_table_head_after_price_col'); ?>
 						<th style="min-width: 80px;" title="<?php esc_attr_e('Available Qty', 'mage-eventpress'); ?>"><?php esc_html_e('Available', 'mage-eventpress'); ?></th>
 						<th style="min-width: 80px;" title="<?php esc_attr_e('Default Qty', 'mage-eventpress'); ?>"><?php esc_html_e('Default', 'mage-eventpress'); ?></th>
-						<?php echo $rsvqty = '<th style="min-width: 80px;" title="' . esc_attr__("Reserve Qty", "mage-eventpress") . '">' . esc_html__("Reserve", "mage-eventpress") . '</th>';
-						apply_filters('mep_add_extra_column', $rsvqty); ?>
+						<?php $rsvqty = '<th style="min-width: 80px;" title="' . esc_attr__("Reserve Qty", "mage-eventpress") . '">' . esc_html__("Reserve", "mage-eventpress") . '</th>';
+						echo apply_filters('mep_add_extra_column', wp_kses_post($rsvqty)); ?>
 						<th style="min-width: 150px;" title="<?php esc_attr_e('Sale End Date', 'mage-eventpress'); ?>"><?php esc_html_e('Sale End Date', 'mage-eventpress'); ?></th>
 						<th style="min-width: 120px;" title="<?php esc_attr_e('Sale End Time', 'mage-eventpress'); ?>"><?php esc_html_e('Sale End Time', 'mage-eventpress'); ?></th>
 						<th style="min-width: 140px;" title="<?php esc_attr_e('Qty Box Type', 'mage-eventpress'); ?>"><?php esc_html_e('Qty Box', 'mage-eventpress'); ?></th>
@ -518,8 +518,8 @@ class MP_Event_All_Info_In_One
 						<?php do_action('mep_pricing_table_empty_after_price_col'); ?>
 						<td><input type="number" size="4" pattern="[0-9]*" step="1" class="mp_formControl" name="option_qty_t[]" placeholder="Ex: 15" value="" /></td>
 						<td><input type="number" size="2" pattern="[0-9]*" class="mp_formControl" name="option_default_qty_t[]" placeholder="Ex: 1" value="" /></td>
-						<?php echo $option_rsv_t = '<td><input type="number" class="mp_formControl" name="option_rsv_t[]" placeholder="Ex: 5" value=""/></td>' ?>
-						<?php apply_filters('mep_add_field_to_ticket_type', $option_rsv_t); ?>
+						<?php $option_rsv_t = '<td><input type="number" class="mp_formControl" name="option_rsv_t[]" placeholder="Ex: 5" value=""/></td>' ?>
+						<?php echo apply_filters('mep_add_field_to_ticket_type', wp_kses_post($option_rsv_t)); ?>
 						<td>
 							<div class="sell_expire_date">
 								<input type="date" id="ticket_sale_start_date" value='' name="option_sale_end_date[]" />
@ -790,11 +790,11 @@ class MP_Event_All_Info_In_One
 			</tr>
 			<tr>
 				<th><span><?php esc_html_e('Start Date :', 'mage-eventpress'); ?></span></th>
-				<td colspan="3"><?php echo $event_start_date ? get_mep_datetime($event_start_date, 'date-time-text') : ''; ?></td>
+				<td colspan="3"><?php echo esc_attr($event_start_date) ? get_mep_datetime($event_start_date, 'date-time-text') : ''; ?></td>
 			</tr>
 			<tr>
 				<th><span><?php _e('End Date :', 'mage-eventpress'); ?></span></th>
-				<td colspan="3"><?php echo $event_end_date ? get_mep_datetime($event_end_date, 'date-time-text') : ''; ?></td>
+				<td colspan="3"><?php echo esc_attr($event_end_date) ? get_mep_datetime($event_end_date, 'date-time-text') : ''; ?></td>
 			</tr>
 			<tr>
 				<th><span><?php esc_html_e('Event Status:', 'mage-eventpress'); ?></span></th>
@ -880,8 +880,7 @@ class MP_Event_All_Info_In_One
 		$values = get_post_custom($post_id);
 		// wp_nonce_field('mep_event_reg_btn_nonce', 'mep_event_reg_btn_nonce');
 		$mep_show_end_datetime = '';
-		if (array_key_exists('mep_show_end_datetime', $values)) {
-			// echo $values['mep_show_end_datetime'][0];
+		if (array_key_exists('mep_show_end_datetime', $values)) {			
 			if ($values['mep_show_end_datetime'][0] == 'yes') {
 				$mep_show_end_datetime = 'checked';
 			}
--- a/inc/mep_functions.php
+++ b/inc/mep_functions.php
@ -2500,7 +2500,7 @@ function mep_hide_date_from_order_page() {
    }
    $product_id = array_filter($product_id);
    $parr = implode(', ', $product_id);
-    echo '<style> ' . $parr . '{display:none!important}' . ' </style>';
+    echo '<style> ' . esc_html($parr) . '{display:none!important}' . ' </style>';
 }

 // add_action('parse_query', 'mep_product_tags_sorting_query');
@ -2920,7 +2920,7 @@ if (!function_exists('mep_apply_custom_css')) {
        ?>
        <style>
            /*  Custom CSS Code From Event Manager For Woocommerce  Plugin */
-            <?php echo $custom_css; ?>
+            <?php echo esc_attr($custom_css); ?>
        </style>
        <?php
        return ob_get_clean();
@ -3879,7 +3879,7 @@ function mep_get_event_add_cart_sec($post_id) {
                <td align="right">
                    <input type="hidden" name="mep_event_location_cart" value="<?php trim(mep_ev_location_ticket($post_id, $event_meta)); ?>">
                    <input type="hidden" name="mep_event_date_cart" value="<?php do_action('mep_event_date'); ?>">
-                    <button type="submit" name="add-to-cart" value="<?php echo esc_attr($cart_product_id); ?>" class="single_add_to_cart_button button alt btn-mep-event-cart"><?php _e(mep_get_label($post_id, 'mep_cart_btn_text', 'Register This Event'), 'mage-eventpress'); ?> </button>
+                    <button type="submit" name="add-to-cart" value="<?php echo esc_attr($cart_product_id); ?>" class="single_add_to_cart_button button alt btn-mep-event-cart"><?php esc_html_e(mep_get_label($post_id, 'mep_cart_btn_text', 'Register This Event'), 'mage-eventpress'); ?> </button>
                </td>
            </tr>
        </table>
@ -4419,7 +4419,7 @@ if (!class_exists('MPWEM_Helper')) {
                                    </div>
                                <?php } ?>
                                <?php for ($i = 0; $i < $total_page; $i++) { ?>
-                                    <button class="defaultButton_xs <?php echo $i == 0 ? 'active_pagination' : ''; ?>" type="button" data-pagination="<?php echo esc_attr($i); ?>"><?php echo esc_html($i + 1); ?></button>
+                                    <button class="defaultButton_xs <?php echo esc_html($i) == 0 ? 'active_pagination' : ''; ?>" type="button" data-pagination="<?php echo esc_attr($i); ?>"><?php echo esc_html($i + 1); ?></button>
                                <?php } ?>
                                <?php if ($total_page > 5) { ?>
                                    <div class="ellipse_right">
--- a/inc/mep_shortcode.php
+++ b/inc/mep_shortcode.php
@ -53,13 +53,13 @@ $event_dates = mep_get_event_dates_arr(get_the_id());
 foreach ($event_dates as $_dates) {
    ?>
 {
-                        start: '<?php echo date_i18n('Y-m-d H:i', strtotime($_dates['start'])); ?>',
-                        end: '<?php echo date_i18n('Y-m-d H:i', strtotime($_dates['end'])); ?>',
-                        title: '<?php the_title(); ?>',
-                        url: '<?php the_permalink(); ?>',
-                        class: '',
-                        color: '#000',
-                        data: {}
+                        start   : '<?php echo date_i18n('Y-m-d H:i', strtotime($_dates['start'])); ?>',
+                        end     : '<?php echo date_i18n('Y-m-d H:i', strtotime($_dates['end'])); ?>',
+                        title   : '<?php the_title(); ?>',
+                        url     : '<?php the_permalink(); ?>',
+                        class   : '',
+                        color   : '#000',
+                        data    : {}
                    },
    <?php
 }
@ -166,8 +166,8 @@ function mep_event_list($atts, $content = null)
        <div class="all_filter_item mep_event_list_sec" id='mep_event_list_<?php echo esc_attr($unq_id); ?>'>
            <?php
            $total_item = $loop->post_count;
-            echo $main_div;
-            echo $time_line_div_start;
+            echo wp_kses_post($main_div);
+            echo wp_kses_post($time_line_div_start);
            while ($loop->have_posts()) {
                $loop->the_post();

@ -188,7 +188,7 @@ function mep_event_list($atts, $content = null)
                do_action('mep_event_list_shortcode', get_the_id(), $columnNumber, $style,$width,$unq_id);
            }
            wp_reset_postdata();
-            echo $time_line_div_end;
+            echo wp_kses_post($time_line_div_end);
            ?>
        </div>
    </div>
@ -304,7 +304,7 @@ function mep_expire_event_list($atts, $content = null)
             */
            $loop =  mep_event_query($show, $sort, $cat, $org, $city, $country, 'expired');
            $total_post =    $loop->post_count;
-            echo $main_div;
+            echo wp_kses_post($main_div);
            while ($loop->have_posts()) {
                $loop->the_post();
 	            if ($style == 'grid' && (int)$column>0) {
--- a/inc/mep_tax.php
+++ b/inc/mep_tax.php
@ -108,7 +108,7 @@ add_filter("manage_mep_cat_custom_column", 'mep_display_cat_id_to_column', 10, 3
 function mep_display_cat_id_to_column($out, $column_name, $theme_id) {
    switch ($column_name) {
        case 'mep_cat_id': 
-                echo $theme_id;
+                echo esc_html($theme_id);
            break;
 
        default:
@ -137,7 +137,7 @@ add_filter("manage_mep_org_custom_column", 'mep_display_org_id_to_column', 10, 3
 function mep_display_org_id_to_column($out, $column_name, $theme_id) {
    switch ($column_name) {
        case 'mep_org_id': 
-                echo $theme_id;
+                echo esc_html($theme_id);
            break;
 
        default:
--- a/inc/mep_tax_meta.php
+++ b/inc/mep_tax_meta.php
@ -43,8 +43,7 @@ function mep_org_tax_location_fileds($taxonomy)
    $user_api = mep_get_option('google-map-api', 'general_setting_sec', '');
    if ($user_api) {
    ?>
-      <input id="pac-input" name='location_name' value='<?php //echo $values['location_name'][0]; 
-                                                        ?>' />
+      <input id="pac-input" name='location_name' value='' />


      <input type="text" class="form-control" style="display: none;" name="latitude" value="">
@ -55,7 +54,7 @@ function mep_org_tax_location_fileds($taxonomy)
      if ($user_api) {
        //wp_enqueue_script('gmap-libs','https://maps.googleapis.com/maps/api/js?key='.$user_api.'&libraries=places&callback=initMap',array('jquery','gmap-scripts'),1,true);
      ?>
-        <script type='text/javascript' src='https://maps.googleapis.com/maps/api/js?key=<?php echo $user_api; ?>&#038;libraries=places&#038;callback=initMap&#038;ver=1'></script>
+        <script type='text/javascript' src='https://maps.googleapis.com/maps/api/js?key=<?php echo esc_attr($user_api); ?>&#038;libraries=places&#038;callback=initMap&#038;ver=1'></script>
      <?php
      }
      ?>
@ -251,8 +250,7 @@ function mep_edit_feature_group_field($term, $taxonomy)
      if ($user_api) {
      ?>
        <div class='sec'>
-          <input id="pac-input" name='location_name' value='<?php //echo $values['location_name'][0]; 
-                                                            ?>' />
+          <input id="pac-input" name='location_name' value='' />
        </div>

        <input type="text" class="form-control" style="display: none;" name="latitude" value="<?php echo get_term_meta($term->term_id, 'latitude', true); ?>">
@ -262,7 +260,7 @@ function mep_edit_feature_group_field($term, $taxonomy)

        if ($user_api) {
        ?>
-          <script type='text/javascript' src='https://maps.googleapis.com/maps/api/js?key=<?php echo $user_api; ?>&#038;libraries=places&#038;callback=initMap&#038;ver=1'></script>
+          <script type='text/javascript' src='https://maps.googleapis.com/maps/api/js?key=<?php echo esc_attr($user_api); ?>&#038;libraries=places&#038;callback=initMap&#038;ver=1'></script>
        <?php
        }
        if (get_term_meta($term->term_id, 'latitude', true)) {
@ -283,8 +281,8 @@ function mep_edit_feature_group_field($term, $taxonomy)
          function initMap() {
            var map = new google.maps.Map(document.getElementById('map'), {
              center: {
-                lat: <?php echo $lat; ?>,
-                lng: <?php echo $lon; ?>
+                lat: <?php echo esc_attr($lat); ?>,
+                lng: <?php echo esc_attr($lon); ?>
              },
              zoom: 17
            });
@ -307,8 +305,8 @@ function mep_edit_feature_group_field($term, $taxonomy)
              anchorPoint: new google.maps.Point(0, -29),
              draggable: true,
              position: {
-                lat: <?php echo $lat; ?>,
-                lng: <?php echo $lon; ?>
+                lat: <?php echo esc_attr($lat); ?>,
+                lng: <?php echo esc_attr($lon); ?>
              }
            });

--- a/inc/mep_user_custom_style.php
+++ b/inc/mep_user_custom_style.php
@ -6,98 +6,98 @@ if (!defined('ABSPATH')) {
 add_action('wp_head', 'mep_user_custom_styles', 10, 999);
 function mep_user_custom_styles()
 {
-    $base_color             = esc_attr(mep_get_option('mep_base_color', 'style_setting_sec', '#ffbe30'));
-    $label_bg_color         = esc_attr(mep_get_option('mep_title_bg_color', 'style_setting_sec', '#ffbe30'));
-    $label_text_color       = esc_attr(mep_get_option('mep_title_text_color', 'style_setting_sec', '#ffffff'));
-    $cart_btn_bg_color      = esc_attr(mep_get_option('mep_cart_btn_bg_color', 'style_setting_sec', '#ffbe30'));
-    $cart_btn_txt_color     = esc_attr(mep_get_option('mep_cart_btn_text_color', 'style_setting_sec', '#ffffff'));
+    $base_color             = mep_get_option('mep_base_color', 'style_setting_sec', '#ffbe30');
+    $label_bg_color         = mep_get_option('mep_title_bg_color', 'style_setting_sec', '#ffbe30');
+    $label_text_color       = mep_get_option('mep_title_text_color', 'style_setting_sec', '#ffffff');
+    $cart_btn_bg_color      = mep_get_option('mep_cart_btn_bg_color', 'style_setting_sec', '#ffbe30');
+    $cart_btn_txt_color     = mep_get_option('mep_cart_btn_text_color', 'style_setting_sec', '#ffffff');

-    $calender_btn_bg_color  = esc_attr(mep_get_option('mep_calender_btn_bg_color', 'style_setting_sec', '#ffbe30'));
-    $calender_btn_txt_color = esc_attr(mep_get_option('mep_calender_btn_text_color', 'style_setting_sec', '#ffffff'));
-    $faq_label_bg_color     = esc_attr(mep_get_option('mep_faq_title_bg_color', 'style_setting_sec', '#ffbe30'));
-    $faq_label_text_color   = esc_attr(mep_get_option('mep_faq_title_text_color', 'style_setting_sec', '#ffffff'));
+    $calender_btn_bg_color  = mep_get_option('mep_calender_btn_bg_color', 'style_setting_sec', '#ffbe30');
+    $calender_btn_txt_color = mep_get_option('mep_calender_btn_text_color', 'style_setting_sec', '#ffffff');
+    $faq_label_bg_color     = mep_get_option('mep_faq_title_bg_color', 'style_setting_sec', '#ffbe30');
+    $faq_label_text_color   = mep_get_option('mep_faq_title_text_color', 'style_setting_sec', '#ffffff');

    ?>
    <style>
 		.pagination_area button[class*="defaultButton_xs"],
        .list_with_filter_section [class*="defaultButton"],
        div.item_hover_effect a{
-            background-color:<?php echo $base_color; ?>;
+            background-color:<?php echo esc_attr($base_color); ?>;
        }
        div.item_hover_effect a:hover{
-            color:<?php echo $base_color; ?>;background-color:#fff;border:1px solid <?php echo $base_color; ?>;
+            color:<?php echo esc_attr($base_color); ?>;background-color:#fff;border:1px solid <?php echo esc_attr($base_color); ?>;
        }
        ul.mp_event_more_date_list li:hover{
-            background-color:<?php echo $base_color; ?>;
+            background-color:<?php echo esc_attr($base_color); ?>;
        }
        .mep-default-sidrbar-events-schedule ul li i, .mep-ev-start-date, h3.mep_list_date i, .df-ico i, .mep-default-sidrbar-address ul li i, .mep-default-sidrbar-social ul li a, button.mep-cat-control, .pagination-sec a {
-            background: <?php echo $base_color; ?>;
+            background: <?php echo esc_attr($base_color); ?>;
        }
        .mep-default-sidrbar-meta .fa-list-alt,.mep-list-footer ul li i {
            background: transparent;
-            color: <?php echo $base_color; ?>;
+            color: <?php echo esc_attr($base_color); ?>;
        }
        .mep_more_date_btn{
-            border: 1px solid <?php echo $base_color; ?>;
+            border: 1px solid <?php echo esc_attr($base_color); ?>;
            background: transparent;
-            color: <?php echo $base_color; ?>;
+            color: <?php echo esc_attr($base_color); ?>;
        }
        .mep-default-sidrbar-meta p a{
-            color: <?php echo $base_color; ?>;
+            color: <?php echo esc_attr($base_color); ?>;
        }
        .mep_more_date_btn:before{
-            background: <?php echo $base_color; ?>;
-            border-color: <?php echo $base_color; ?>;
+            background: <?php echo esc_attr($base_color); ?>;
+            border-color: <?php echo esc_attr($base_color); ?>;
        }
        .mep-default-sidrbar-events-schedule h3 i, .mep_event_list .mep_list_date, .mep-event-theme-1 .mep-social-share li a, .mep-template-2-hamza .mep-social-share li a {
-            color: <?php echo $base_color; ?>;
+            color: <?php echo esc_attr($base_color); ?>;
        }

        .mep_event_list_item:hover {
-            border-color: <?php echo $base_color; ?>;
+            border-color: <?php echo esc_attr($base_color); ?>;
        }

        .mep_event_list_item .mep-list-header:before, .mep_event_grid_item .mep-list-header:before {
-            border-color: <?php echo $base_color; ?>;
+            border-color: <?php echo esc_attr($base_color); ?>;
        }


        /*Cart sec Label Style*/
        .mep-default-feature-cart-sec h3, .mep-event-theme-1 h3.ex-sec-title, .mep-tem3-mid-sec h3.ex-sec-title, .mep-tem3-title-sec {
-            background: <?php echo $label_bg_color; ?>;
-            color: <?php echo $label_text_color; ?>;
+            background: <?php echo esc_attr($label_bg_color); ?>;
+            color: <?php echo esc_attr($label_text_color); ?>;
        }

        /*FAQ Sec Style*/
        .mep-default-feature-faq-sec h4, .tmep-emplate-3-faq-sec .mep-event-faq-part h4 {
-            background: <?php echo $faq_label_bg_color; ?>;
-            color: <?php echo $faq_label_text_color; ?>;
+            background: <?php echo esc_attr($faq_label_bg_color); ?>;
+            color: <?php echo esc_attr($faq_label_text_color); ?>;
        }

        h3.ex-sec-title {
-            background: <?php echo $base_color; ?>;
+            background: <?php echo esc_attr($base_color); ?>;
        }

        /*Cart Button Style*/
        .mep-default-feature-cart-sec button.single_add_to_cart_button.button.alt.btn-mep-event-cart, .mep-event-theme-1 .btn-mep-event-cart, .mep-template-2-hamza .btn-mep-event-cart, .mep-tem3-mid-sec .btn-mep-event-cart, .button.button-default.woocommerce.button.alt.button.alt.btn-mep-event-cart {
-            background: <?php echo $cart_btn_bg_color; ?>;
-            color: <?php echo $cart_btn_txt_color; ?> !important;
-            border-color: <?php echo $cart_btn_bg_color; ?>;
+            background: <?php echo esc_attr($cart_btn_bg_color); ?>;
+            color: <?php echo esc_attr($cart_btn_txt_color); ?> !important;
+            border-color: <?php echo esc_attr($cart_btn_bg_color); ?>;
        }

        /*Calender Button Style*/
        .mep-default-sidrbar-calender-btn a, .mep-event-theme-1 .mep-add-calender, .mep-template-2-hamza .mep-add-calender, .mep-tem3-mid-sec .mep-add-calender, #mep_add_calender_button {
-            background: <?php echo $calender_btn_bg_color; ?>;
-            color: <?php echo $calender_btn_txt_color; ?> !important;
-            border-color: <?php echo $calender_btn_bg_color; ?>;
+            background: <?php echo esc_attr($calender_btn_bg_color); ?>;
+            color: <?php echo esc_attr($calender_btn_txt_color); ?> !important;
+            border-color: <?php echo esc_attr($calender_btn_bg_color); ?>;
        }
        #mep_add_calender_button,
        ul#mep_add_calender_links li a{
-            background: <?php echo $base_color; ?>;
+            background: <?php echo esc_attr($base_color); ?>;
        }
        /**/
        .mep_list_event_details p.read-more a{
-            color: <?php echo $base_color; ?>;
+            color: <?php echo esc_attr($base_color); ?>;
        }
        <?php do_action('mep_event_user_custom_styling'); ?>
    </style>
--- a/inc/template-prts/event_extra_service.php
+++ b/inc/template-prts/event_extra_service.php
@ -7,7 +7,6 @@ add_action('mep_event_extra_service', 'mep_ev_extra_serv',10,2);
 if (!function_exists('mep_ev_extra_serv')) {
    function mep_ev_extra_serv($post_id,$extra_service_label)
    {
-        // echo $extra_service_label;
        global $post, $product;
        $post_id                        = $post_id;
        $count                      = 1;
--- a/support/elementor/widget/event-city-list.php
+++ b/support/elementor/widget/event-city-list.php
@ -105,7 +105,7 @@ class MEPEventCityListWidget extends Widget_Base {
 	</div>
 	<script type="text/javascript">
 		 jQuery(document).ready(function(){
-		 	jQuery('.mep-city-list li a').prepend('<?php echo $mep_event_city_list_icon_html; ?>');
+		 	jQuery('.mep-city-list li a').prepend('<?php echo wp_kses_post($mep_event_city_list_icon_html); ?>');
 		});
 	</script>
 	<?php
--- a/support/elementor/widget/event-details.php
+++ b/support/elementor/widget/event-details.php
@ -95,7 +95,7 @@ class MEPEventDetailstWidget extends Widget_Base {
 		if (get_post_type($event_id) == 'mep_events') {    
 	?>	
        <div class="mep-default-feature-content mep-elementor-widget-details">
-           <?php echo $content; ?>
+           <?php echo wp_kses_post($content); ?>
        </div>
 	<?php
 }
--- a/templates/single/extra_service_list.php
+++ b/templates/single/extra_service_list.php
@ -56,7 +56,7 @@
            </td>
            <td class="mage_text_center"><?php echo wc_price(esc_html(mep_get_price_including_tax($post_id, $service_price)));
                                            if ($ext_left > 0) { ?>
-                    <p style="display: none;" class="price_jq"><?php echo $tic_price > 0 ? esc_html($tic_price) : 0;  ?></p>
+                    <p style="display: none;" class="price_jq"><?php echo esc_html($tic_price) > 0 ? esc_html($tic_price) : 0;  ?></p>
                    <input type="hidden" name='event_extra_service_name[]' value='<?php echo esc_attr($service_name); ?>'>
                    <input type="hidden" name='event_extra_service_price[]' value='<?php echo esc_attr($service_price); ?>'>
                <?php } ?>
--- a/templates/single/ticket_type_list.php
+++ b/templates/single/ticket_type_list.php
@ -48,7 +48,7 @@
                            <?php echo mep_get_option('mep_per_ticket_price_text', 'label_setting_sec') ? mep_get_option('mep_per_ticket_price_text', 'label_setting_sec') : esc_html__('Per Ticket Price:', 'mage-eventpress');  ?>
                        </span> <strong><?php echo wc_price(esc_html(mep_get_price_including_tax($post_id,$ticket_price))); ?></strong>
                        <?php if ($total_seats > 0) { ?>
-                            <p style="display: none;" class="price_jq"><?php echo $tic_price > 0 ? esc_html($tic_price) : 0;  ?></p>
+                            <p style="display: none;" class="price_jq"><?php echo esc_html($tic_price) > 0 ? esc_html($tic_price) : 0;  ?></p>

                        <?php } ?>
                    </td>