From 9a35699d78326846a08ddf3e03c8344b90c483a7 Mon Sep 17 00:00:00 2001
From: Brian Miyaji <brian@themeboy.com>
Date: Fri, 5 Nov 2021 22:23:56 +0900
Subject: [PATCH] Sanitize tab key in tutorials

---
 modules/sportspress-tutorials.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/sportspress-tutorials.php b/modules/sportspress-tutorials.php
index f9c06107..16110289 100644
--- a/modules/sportspress-tutorials.php
+++ b/modules/sportspress-tutorials.php
@@ -145,7 +145,7 @@ class SportsPress_Tutorials {
 			'advanced' => __( 'Advanced', 'sportspress' ),
 		) );
 		if ( isset( $_GET['tab'] ) && array_key_exists( $_GET['tab'], $tabs ) ) {
-			$current_tab = $_GET['tab'];
+			$current_tab = sanitize_key( $_GET['tab'] );
 		} else {
 			$current_tab = key( $tabs );
 		}