]> scripts.mit.edu Git - autoinstalls/wordpress.git/blobdiff - wp-admin/options-misc.php
scripts.mit.edu / autoinstalls / wordpress.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Wordpress 2.0.11
[autoinstalls/wordpress.git] / wp-admin / options-misc.php
diff --git a/wp-admin/options-misc.php b/wp-admin/options-misc.php
index b4ff4efb0036319a0503e49c7309e1b1ba848a39..2b6e33a5dffc74d7b179c5f0e0af326e79d612a1 100644 (file)
--- a/wp-admin/options-misc.php
+++ b/wp-admin/options-misc.php
@@ -17,7 +17,7 @@ include('admin-header.php');
 <table class="editform optiontable">
 <tr valign="top">
 <th scope="row"><?php _e('Store uploads in this folder'); ?>:</th>
 <table class="editform optiontable">
 <tr valign="top">
 <th scope="row"><?php _e('Store uploads in this folder'); ?>:</th>
-<td><input name="upload_path" type="text" id="upload_path" class="code" value="<?php echo str_replace(ABSPATH, '', get_settings('upload_path')); ?>" size="40" />
+<td><input name="upload_path" type="text" id="upload_path" class="code" value="<?php echo attribute_escape(str_replace(ABSPATH, '', get_settings('upload_path'))); ?>" size="40" />
 <br />
 <?php _e('Default is <code>wp-content/uploads</code>'); ?>
 </td>
 <br />
 <?php _e('Default is <code>wp-content/uploads</code>'); ?>
 </td>
WordPress autoinstaller for phpBB