asc/sportspress
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

FIX: Wrong escape method used

Browse Source
This commit is contained in:
savvasha
2022-08-01 08:48:47 +03:00
parent 4eec1f895a
commit 60fee44ebe
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
modules/sportspress-widget-alignment.php
View File

@@ -147,7 +147,7 @@ if ( ! class_exists( 'SportsPress_Widget_Alignment' ) ) :
<select id="align" name="align">
<?php
foreach ( $this->options as $value => $label ) {
printf( wp_kses_post( '<option value="%s">%s</option>', $value, $label ) );
printf( '<option value="%s">%s</option>', esc_attr( $value ), esc_html( $label ) );
}
?>
</select>