Escape data inside table
-
When the data is displayed in the debug bar it’s wrapped in
<code>but it doesn’t look like there is any escaping.So if you have custom fields that contain iframes or embed codes, they run in the debug bar… which causes some obvious issues.
The post meta data should be escaped when rendering the table.
- The topic ‘Escape data inside table’ is closed to new replies.
