asc/sportspress
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Escapes based on phpcs #2

Browse Source
This commit is contained in:
Savvas Hadjigeorgiou
2021-11-11 13:38:32 +02:00
parent 85d08eae56
commit da88c5b603
1 changed files with 14 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
includes/admin/class-sp-admin-settings.php
View File

@@ -66,7 +66,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
global $current_section, $current_tab; global $current_section, $current_tab;
if ( empty( $_REQUEST['_wpnonce'] ) || ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'sportspress-settings' ) ) { if ( empty( $_REQUEST['_wpnonce'] ) || ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'sportspress-settings' ) ) {
die( __( 'Action failed. Please refresh the page and retry.', 'sportspress' ) ); die( esc_html__( 'Action failed. Please refresh the page and retry.', 'sportspress' ) );
} }
// Trigger actions // Trigger actions
@@ -303,13 +303,13 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
// Section Titles // Section Titles
case 'title': case 'title':
echo '<div class="sp-settings-section sp-settings-section-' . sanitize_title( sp_array_value( $value, 'id' ) ) . '">'; echo '<div class="sp-settings-section sp-settings-section-' . esc_attr( sp_array_value( $value, 'id' ) ) . '">';
echo '<a name="sp-settings-section-' . sanitize_title( sp_array_value( $value, 'id' ) ) . '"></a>'; echo '<a name="sp-settings-section-' . esc_attr( sp_array_value( $value, 'id' ) ) . '"></a>';
if ( ! empty( $value['title'] ) ) { if ( ! empty( $value['title'] ) ) {
echo '<h3>' . esc_html( $value['title'] ) . '</h3>'; echo '<h3>' . esc_html( $value['title'] ) . '</h3>';
} }
if ( ! empty( $value['desc'] ) ) { if ( ! empty( $value['desc'] ) ) {
echo wpautop( wptexturize( wp_kses_post( $value['desc'] ) ) ); echo wp_kses_post( wpautop( wptexturize( $value['desc'] ) ) );
} }
echo '<table class="form-table">' . "\n\n"; echo '<table class="form-table">' . "\n\n";
if ( ! empty( $value['id'] ) ) { if ( ! empty( $value['id'] ) ) {
@@ -359,7 +359,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
value="<?php echo esc_attr( $option_value ); ?>" value="<?php echo esc_attr( $option_value ); ?>"
placeholder="<?php echo esc_attr( $value['placeholder'] ); ?>" placeholder="<?php echo esc_attr( $value['placeholder'] ); ?>"
class="<?php echo esc_attr( $value['class'] ); ?>" class="<?php echo esc_attr( $value['class'] ); ?>"
<?php echo implode( ' ', $custom_attributes ); ?> <?php echo esc_html( implode( ' ', $custom_attributes ) ); ?>
/> <?php echo wp_kses_post( $description ); ?> /> <?php echo wp_kses_post( $description ); ?>
</td> </td>
</tr> </tr>
@@ -384,7 +384,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
id="<?php echo esc_attr( $value['id'] ); ?>" id="<?php echo esc_attr( $value['id'] ); ?>"
style="<?php echo esc_attr( $value['css'] ); ?>" style="<?php echo esc_attr( $value['css'] ); ?>"
class="<?php echo esc_attr( $value['class'] ); ?>" class="<?php echo esc_attr( $value['class'] ); ?>"
<?php echo implode( ' ', $custom_attributes ); ?> <?php echo esc_html( implode( ' ', $custom_attributes ) ); ?>
><?php echo esc_textarea( $option_value ); ?></textarea> ><?php echo esc_textarea( $option_value ); ?></textarea>
</td> </td>
</tr> </tr>
@@ -417,7 +417,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
if ( is_rtl() ) : if ( is_rtl() ) :
?> ?>
chosen-rtl<?php endif; ?> <?php echo esc_attr( $value['class'] ); ?>" chosen-rtl<?php endif; ?> <?php echo esc_attr( $value['class'] ); ?>"
<?php echo implode( ' ', $custom_attributes ); ?> <?php echo esc_html( implode( ' ', $custom_attributes ) ); ?>
<?php <?php
if ( $value['type'] == 'multiselect' ) { if ( $value['type'] == 'multiselect' ) {
echo 'multiple="multiple"';} echo 'multiple="multiple"';}
@@ -471,7 +471,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
if ( is_rtl() ) : if ( is_rtl() ) :
?> ?>
chosen-rtl<?php endif; ?> <?php echo esc_attr( $value['class'] ); ?>" chosen-rtl<?php endif; ?> <?php echo esc_attr( $value['class'] ); ?>"
<?php echo implode( ' ', $custom_attributes ); ?> <?php echo esc_html( implode( ' ', $custom_attributes ) ); ?>
<?php <?php
if ( $value['type'] == 'multiselect' ) { if ( $value['type'] == 'multiselect' ) {
echo 'multiple="multiple"';} echo 'multiple="multiple"';}
@@ -480,7 +480,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
<?php <?php
foreach ( $value['options'] as $group => $options ) { foreach ( $value['options'] as $group => $options ) {
?> ?>
<optgroup label="<?php _e( $group, 'sportspress' ); ?>"> <optgroup label="<?php esc_attr_e( $group, 'sportspress' ); ?>">
<?php <?php
foreach ( $options as $key => $val ) { foreach ( $options as $key => $val ) {
?> ?>
@@ -539,7 +539,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
if ( is_rtl() ) : if ( is_rtl() ) :
?> ?>
chosen-rtl<?php endif; ?> <?php echo esc_attr( $value['class'] ); ?>" chosen-rtl<?php endif; ?> <?php echo esc_attr( $value['class'] ); ?>"
<?php echo implode( ' ', $custom_attributes ); ?> <?php echo esc_html( implode( ' ', $custom_attributes ) ); ?>
<?php <?php
if ( $value['type'] == 'multiselect' ) { if ( $value['type'] == 'multiselect' ) {
echo 'multiple="multiple"';} echo 'multiple="multiple"';}
@@ -570,11 +570,11 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
<?php <?php
} }
?> ?>
</select> <?php echo wp_kses_post( $description ); ?> <a class="button button-small sp-configure-sport" href="<?php echo esc_url( admin_url( add_query_arg( array( 'page' => 'sportspress-config' ), 'admin.php' ) ) ); ?>"><?php _e( 'Configure', 'sportspress' ); ?></a> </select> <?php echo wp_kses_post( $description ); ?> <a class="button button-small sp-configure-sport" href="<?php echo esc_url( admin_url( add_query_arg( array( 'page' => 'sportspress-config' ), 'admin.php' ) ) ); ?>"><?php esc_html_e( 'Configure', 'sportspress' ); ?></a>
<p> <p>
<label> <label>
<input type="checkbox" name="add_sample_data" id="add_sample_data" <?php checked( sp_array_value( $value, 'welcome' ) ); ?>> <input type="checkbox" name="add_sample_data" id="add_sample_data" <?php checked( sp_array_value( $value, 'welcome' ) ); ?>>
<?php _e( 'Install demo content', 'sportspress' ); ?> <?php esc_html_e( 'Install demo content', 'sportspress' ); ?>
</label> </label>
</p> </p>
</td> </td>
@@ -606,7 +606,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
type="radio" type="radio"
style="<?php echo esc_attr( $value['css'] ); ?>" style="<?php echo esc_attr( $value['css'] ); ?>"
class="<?php echo esc_attr( $value['class'] ); ?>" class="<?php echo esc_attr( $value['class'] ); ?>"
<?php echo implode( ' ', $custom_attributes ); ?> <?php echo esc_html( implode( ' ', $custom_attributes ) ); ?>
<?php checked( $key, $option_value ); ?> <?php checked( $key, $option_value ); ?>
/> <?php echo esc_attr( $val ); ?></label> /> <?php echo esc_attr( $val ); ?></label>
</li> </li>
@@ -668,7 +668,7 @@ if ( ! class_exists( 'SP_Admin_Settings' ) ) :
type="checkbox" type="checkbox"
value="1" value="1"
<?php checked( $option_value, 'yes' ); ?> <?php checked( $option_value, 'yes' ); ?>
<?php echo implode( ' ', $custom_attributes ); ?> <?php echo esc_html( implode( ' ', $custom_attributes ) ); ?>
/> <?php echo wp_kses_post( $description ); ?> /> <?php echo wp_kses_post( $description ); ?>
</label> <?php echo wp_kses_post( $tip ); ?> </label> <?php echo wp_kses_post( $tip ); ?>
<?php <?php