diff options
Diffstat (limited to 'wp-admin/includes')
-rw-r--r-- | wp-admin/includes/media.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/wp-admin/includes/media.php b/wp-admin/includes/media.php index d91ffc2..95de0ff 100644 --- a/wp-admin/includes/media.php +++ b/wp-admin/includes/media.php @@ -813,7 +813,7 @@ function get_media_item( $attachment_id, $args = null ) { if ( !empty($field[$field['input']]) ) $item .= $field[$field['input']]; elseif ( $field['input'] == 'textarea' ) { - $item .= "<textarea type='text' id='$name' name='$name'>" . attribute_escape( $field['value'] ) . $aria_required . "</textarea>"; + $item .= "<textarea type='text' id='$name' name='$name'" . $aria_required . ">" . htmlspecialchars( $field['value'] ) . "</textarea>"; } else { $item .= "<input type='text' id='$name' name='$name' value='" . attribute_escape( $field['value'] ) . "'" . $aria_required . "/>"; } |