10h30/ultimatemember
1
0
Fork 0
mirror of https://github.com/10h30/ultimatemember.git synced 2026-06-05 15:09:37 +09:00
Code Issues Packages Projects Releases Wiki Activity

- fixed sanitizing the description field with allowed HTML inside;

Browse Source
This commit is contained in:
Nikita Sinelnikov
2021-08-11 13:17:48 +03:00
parent 6fc7ed7686
commit 6a3f55b8a7
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
includes/admin/core/class-admin-dragdrop.php
+1 -1
View File
@@ -59,7 +59,7 @@ if ( ! class_exists( 'um\admin\core\Admin_DragDrop' ) ) {
}
foreach ( $_POST as $key => $value ) {
// don't use sanitize_key here because of a key can be in Uppercase
$key = sanitize_text_field( $key );
// adding rows
includes/core/class-form.php
+1 -1
View File
@@ -579,7 +579,7 @@ if ( ! class_exists( 'um\core\Form' ) ) {
$form[ $k ] = (int) $form[ $k ];
break;
case 'textarea':
if ( ! empty( $field['html'] ) ) {
if ( ! empty( $field['html'] ) || ( UM()->profile()->get_show_bio_key( $form ) === $k && UM()->options()->get( 'profile_show_html_bio' ) ) ) {
$form[ $k ] = wp_kses_post( $form[ $k ] );
} else {
$form[ $k ] = sanitize_textarea_field( $form[ $k ] );