asc/sportspress
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add sanitization to setup, welcome, importer, settings, and admin cpt

Browse Source
This commit is contained in:
Brian Miyaji
2021-11-09 03:37:04 +09:00
parent e23e1c2eed
commit c7302dfc80
12 changed files with 38 additions and 38 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
includes/admin/class-sp-admin-setup-wizard.php
View File

@@ -390,7 +390,7 @@ class SP_Admin_Setup_Wizard {
check_admin_referer( 'sp-setup' );
// Add away team
$post['post_title'] = $_POST['away_team'];
$post['post_title'] = sanitize_text_field( $_POST['away_team'] );
$post['post_type'] = 'sp_team';
$post['post_status'] = 'publish';
$post['tax_input'] = array();
@@ -401,7 +401,7 @@ class SP_Admin_Setup_Wizard {
wp_insert_post( $post );
// Add home team
$post['post_title'] = $_POST['home_team'];
$post['post_title'] = sanitize_text_field( $_POST['home_team'] );
wp_insert_post( $post );
wp_redirect( esc_url_raw( $this->get_next_step_link() ) );