Sanitize and unslash all inputs

2021-11-14 13:49:51 +09:00
parent 8873e5adeb
commit a605d7ed1a
30 changed files with 98 additions and 98 deletions
--- a/includes/admin/settings/class-sp-settings-text.php
+++ b/includes/admin/settings/class-sp-settings-text.php
@@ -81,7 +81,7 @@ if ( ! class_exists( 'SP_Settings_Text' ) ) :
 		 */
 		public function save() {
 			if ( isset( $_POST['sportspress_text'] ) ) {
-				update_option( 'sportspress_text', array_map( 'sanitize_text_field', $_POST['sportspress_text'] ) );
+				update_option( 'sportspress_text', array_map( 'sanitize_text_field', array_map( 'wp_unslash', $_POST['sportspress_text'] ) ) ); // phpcs:ignore WordPress.Security.ValidatedSanitizedInput
 			}
 		}
 	}