<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="content-type" content="text/html; charset=utf-8" /><style type="text/css"><!--
#msg dl { border: 1px #006 solid; background: #369; padding: 6px; color: #fff; }
#msg dt { float: left; width: 6em; font-weight: bold; }
#msg dt:after { content:':';}
#msg dl, #msg dt, #msg ul, #msg li, #header, #footer { font-family: verdana,arial,helvetica,sans-serif; font-size: 10pt;  }
#msg dl a { font-weight: bold}
#msg dl a:link    { color:#fc3; }
#msg dl a:active  { color:#ff0; }
#msg dl a:visited { color:#cc6; }
h3 { font-family: verdana,arial,helvetica,sans-serif; font-size: 10pt; font-weight: bold; }
#msg pre { overflow: auto; background: #ffc; border: 1px #fc0 solid; padding: 6px; }
#msg ul, pre { overflow: auto; }
#header, #footer { color: #fff; background: #636; border: 1px #300 solid; padding: 6px; }
#patch { width: 100%; }
#patch h4 {font-family: verdana,arial,helvetica,sans-serif;font-size:10pt;padding:8px;background:#369;color:#fff;margin:0;}
#patch .propset h4, #patch .binary h4 {margin:0;}
#patch pre {padding:0;line-height:1.2em;margin:0;}
#patch .diff {width:100%;background:#eee;padding: 0 0 10px 0;overflow:auto;}
#patch .propset .diff, #patch .binary .diff  {padding:10px 0;}
#patch span {display:block;padding:0 10px;}
#patch .modfile, #patch .addfile, #patch .delfile, #patch .propset, #patch .binary, #patch .copfile {border:1px solid #ccc;margin:10px 0;}
#patch ins {background:#dfd;text-decoration:none;display:block;padding:0 10px;}
#patch del {background:#fdd;text-decoration:none;display:block;padding:0 10px;}
#patch .lines, .info {color:#888;background:#fff;}
--></style>
<title>[14655] trunk/wp-admin/ms-options.php:
  Validation and some textarea escaping for ms-options.</title>
</head>
<body>

<div id="msg">
<dl>
<dt>Revision</dt> <dd><a href="http://trac.wordpress.org/changeset/14655">14655</a></dd>
<dt>Author</dt> <dd>nacin</dd>
<dt>Date</dt> <dd>2010-05-15 05:58:57 +0000 (Sat, 15 May 2010)</dd>
</dl>

<h3>Log Message</h3>
<pre>Validation and some textarea escaping for ms-options. props Utkarsh, see <a href="http://trac.wordpress.org/ticket/13383">#13383</a>.</pre>

<h3>Modified Paths</h3>
<ul>
<li><a href="#trunkwpadminmsoptionsphp">trunk/wp-admin/ms-options.php</a></li>
</ul>

</div>
<div id="patch">
<h3>Diff</h3>
<a id="trunkwpadminmsoptionsphp"></a>
<div class="modfile"><h4>Modified: trunk/wp-admin/ms-options.php (14654 => 14655)</h4>
<pre class="diff"><span>
<span class="info">--- trunk/wp-admin/ms-options.php        2010-05-15 05:38:40 UTC (rev 14654)
+++ trunk/wp-admin/ms-options.php        2010-05-15 05:58:57 UTC (rev 14655)
</span><span class="lines">@@ -55,8 +55,8 @@
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;?php _e( 'Global Terms' ) ?&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><del>-                                &lt;label&gt;&lt;input type=&quot;radio&quot; id=&quot;global_terms_enabled&quot; name=&quot;global_terms_enabled&quot; value=&quot;0&quot;&lt;?php checked( get_site_option( 'global_terms_enabled' ), 0 ) ?&gt;/&gt; &lt;?php _e( 'Disabled' ); ?&gt;&lt;/label&gt;&lt;br/&gt;
-                                &lt;label&gt;&lt;input type=&quot;radio&quot; id=&quot;global_terms_enabled&quot; name=&quot;global_terms_enabled&quot; value=&quot;1&quot;&lt;?php checked( get_site_option( 'global_terms_enabled' ), 1 ) ?&gt;/&gt; &lt;?php _e( 'Maintain a global list of terms from all sites across the network.' ); ?&gt;&lt;/label&gt;&lt;br /&gt;
</del><ins>+                                &lt;label&gt;&lt;input type=&quot;radio&quot; name=&quot;global_terms_enabled&quot; value=&quot;0&quot;&lt;?php checked( get_site_option( 'global_terms_enabled' ), 0 ) ?&gt;/&gt; &lt;?php _e( 'Disabled' ); ?&gt;&lt;/label&gt;&lt;br/&gt;
+                                &lt;label&gt;&lt;input type=&quot;radio&quot; name=&quot;global_terms_enabled&quot; value=&quot;1&quot;&lt;?php checked( get_site_option( 'global_terms_enabled' ), 1 ) ?&gt;/&gt; &lt;?php _e( 'Maintain a global list of terms from all sites across the network.' ); ?&gt;&lt;/label&gt;&lt;br /&gt;
</ins><span class="cx">                                 &lt;?php if ( ! get_site_option( 'global_terms_enabled') ) { ?&gt;
</span><span class="cx">                                 &lt;strong&gt;&lt;?php _e( 'Warning!' ); ?&gt;&lt;/strong&gt; &lt;?php _e( 'Enabling global terms will create a new table and synchronize terms across the network.' ); ?&gt;
</span><span class="cx">                                 &lt;?php } ?&gt;&lt;/td&gt;
</span><span class="lines">@@ -153,7 +153,8 @@
</span><span class="cx">                                 &lt;td&gt;
</span><span class="cx">                                         &lt;?php $limited_email_domains = get_site_option( 'limited_email_domains' );
</span><span class="cx">                                         $limited_email_domains = str_replace( ' ', &quot;\n&quot;, $limited_email_domains ); ?&gt;
</span><del>-                                        &lt;textarea name=&quot;limited_email_domains&quot; id=&quot;limited_email_domains&quot; cols=&quot;45&quot; rows=&quot;5&quot;&gt;&lt;?php echo wp_htmledit_pre( $limited_email_domains == '' ? '' : implode( &quot;\n&quot;, (array) $limited_email_domains ) ); ?&gt;&lt;/textarea&gt;
</del><ins>+                                        &lt;textarea name=&quot;limited_email_domains&quot; id=&quot;limited_email_domains&quot; cols=&quot;45&quot; rows=&quot;5&quot;&gt;
+&lt;?php echo wp_htmledit_pre( $limited_email_domains == '' ? '' : implode( &quot;\n&quot;, (array) $limited_email_domains ) ); ?&gt;&lt;/textarea&gt;
</ins><span class="cx">                                         &lt;br /&gt;
</span><span class="cx">                                         &lt;?php _e( 'If you want to limit site registrations to certain domains. One domain per line.' ) ?&gt;
</span><span class="cx">                                 &lt;/td&gt;
</span><span class="lines">@@ -162,7 +163,8 @@
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;label for=&quot;banned_email_domains&quot;&gt;&lt;?php _e('Banned Email Domains') ?&gt;&lt;/label&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><del>-                                        &lt;textarea name=&quot;banned_email_domains&quot; id=&quot;banned_email_domains&quot; cols=&quot;45&quot; rows=&quot;5&quot;&gt;&lt;?php echo wp_htmledit_pre( get_site_option( 'banned_email_domains' ) == '' ? '' : implode( &quot;\n&quot;, (array) get_site_option( 'banned_email_domains' ) ) ); ?&gt;&lt;/textarea&gt;
</del><ins>+                                        &lt;textarea name=&quot;banned_email_domains&quot; id=&quot;banned_email_domains&quot; cols=&quot;45&quot; rows=&quot;5&quot;&gt;
+&lt;?php echo wp_htmledit_pre( get_site_option( 'banned_email_domains' ) == '' ? '' : implode( &quot;\n&quot;, (array) get_site_option( 'banned_email_domains' ) ) ); ?&gt;&lt;/textarea&gt;
</ins><span class="cx">                                         &lt;br /&gt;
</span><span class="cx">                                         &lt;?php _e( 'If you want to ban domains from site registrations. One domain per line.' ) ?&gt;
</span><span class="cx">                                 &lt;/td&gt;
</span><span class="lines">@@ -175,7 +177,8 @@
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;label for=&quot;welcome_email&quot;&gt;&lt;?php _e( 'Welcome Email' ) ?&gt;&lt;/label&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><del>-                                        &lt;textarea name=&quot;welcome_email&quot; id=&quot;welcome_email&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;&lt;?php echo stripslashes( get_site_option( 'welcome_email' ) ) ?&gt;&lt;/textarea&gt;
</del><ins>+                                        &lt;textarea name=&quot;welcome_email&quot; id=&quot;welcome_email&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;
+&lt;?php echo wp_htmledit_pre( stripslashes( get_site_option( 'welcome_email' ) ) ) ?&gt;&lt;/textarea&gt;
</ins><span class="cx">                                         &lt;br /&gt;
</span><span class="cx">                                         &lt;?php _e( 'The welcome email sent to new site owners.' ) ?&gt;
</span><span class="cx">                                 &lt;/td&gt;
</span><span class="lines">@@ -183,7 +186,8 @@
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;label for=&quot;welcome_user_email&quot;&gt;&lt;?php _e( 'Welcome User Email' ) ?&gt;&lt;/label&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><del>-                                    &lt;textarea name=&quot;welcome_user_email&quot; id=&quot;welcome_user_email&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;&lt;?php echo stripslashes( get_site_option( 'welcome_user_email' ) ) ?&gt;&lt;/textarea&gt;
</del><ins>+                                    &lt;textarea name=&quot;welcome_user_email&quot; id=&quot;welcome_user_email&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;
+&lt;?php echo wp_htmledit_pre( stripslashes( get_site_option( 'welcome_user_email' ) ) ) ?&gt;&lt;/textarea&gt;
</ins><span class="cx">                                         &lt;br /&gt;
</span><span class="cx">                                         &lt;?php _e( 'The welcome email sent to new users.' ) ?&gt;
</span><span class="cx">                                 &lt;/td&gt;
</span><span class="lines">@@ -191,7 +195,8 @@
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;label for=&quot;first_post&quot;&gt;&lt;?php _e( 'First Post' ) ?&gt;&lt;/label&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><del>-                                        &lt;textarea name=&quot;first_post&quot; id=&quot;first_post&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;&lt;?php echo stripslashes( get_site_option( 'first_post' ) ) ?&gt;&lt;/textarea&gt;
</del><ins>+                                        &lt;textarea name=&quot;first_post&quot; id=&quot;first_post&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;
+&lt;?php echo wp_htmledit_pre( stripslashes( get_site_option( 'first_post' ) ) ) ?&gt;&lt;/textarea&gt;
</ins><span class="cx">                                         &lt;br /&gt;
</span><span class="cx">                                         &lt;?php _e( 'The first post on a new site.' ) ?&gt;
</span><span class="cx">                                 &lt;/td&gt;
</span><span class="lines">@@ -199,7 +204,8 @@
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;label for=&quot;first_page&quot;&gt;&lt;?php _e( 'First Page' ) ?&gt;&lt;/label&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><del>-                                        &lt;textarea name=&quot;first_page&quot; id=&quot;first_page&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;&lt;?php echo stripslashes( get_site_option('first_page') ) ?&gt;&lt;/textarea&gt;
</del><ins>+                                        &lt;textarea name=&quot;first_page&quot; id=&quot;first_page&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;
+&lt;?php echo wp_htmledit_pre( stripslashes( get_site_option('first_page') ) ) ?&gt;&lt;/textarea&gt;
</ins><span class="cx">                                         &lt;br /&gt;
</span><span class="cx">                                         &lt;?php _e( 'The first page on a new site.' ) ?&gt;
</span><span class="cx">                                 &lt;/td&gt;
</span><span class="lines">@@ -207,7 +213,8 @@
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;label for=&quot;first_comment&quot;&gt;&lt;?php _e( 'First Comment' ) ?&gt;&lt;/label&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><del>-                                        &lt;textarea name=&quot;first_comment&quot; id=&quot;first_comment&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;&lt;?php echo stripslashes( get_site_option('first_comment') ) ?&gt;&lt;/textarea&gt;
</del><ins>+                                        &lt;textarea name=&quot;first_comment&quot; id=&quot;first_comment&quot; rows=&quot;5&quot; cols=&quot;45&quot; class=&quot;large-text&quot;&gt;
+&lt;?php echo wp_htmledit_pre( stripslashes( get_site_option('first_comment') ) ) ?&gt;&lt;/textarea&gt;
</ins><span class="cx">                                         &lt;br /&gt;
</span><span class="cx">                                         &lt;?php _e( 'The first comment on a new site.' ) ?&gt;
</span><span class="cx">                                 &lt;/td&gt;
</span><span class="lines">@@ -244,6 +251,7 @@
</span><span class="cx">                                 &lt;th scope=&quot;row&quot;&gt;&lt;?php _e( 'Site upload space' ) ?&gt;&lt;/th&gt;
</span><span class="cx">                                 &lt;td&gt;
</span><span class="cx">                                 &lt;label&gt;&lt;input type=&quot;checkbox&quot; id=&quot;upload_space_check_disabled&quot; name=&quot;upload_space_check_disabled&quot; value=&quot;0&quot;&lt;?php checked( get_site_option( 'upload_space_check_disabled' ), 0 ) ?&gt;/&gt; &lt;?php printf( __( 'Limit total size of files uploaded to %s MB' ), '&lt;input name=&quot;blog_upload_space&quot; type=&quot;text&quot; id=&quot;blog_upload_space&quot; value=&quot;' . esc_attr( get_site_option('blog_upload_space', 10) ) . '&quot; size=&quot;3&quot; /&gt;' ); ?&gt;&lt;/label&gt;&lt;br /&gt;
</span><ins>+                                &lt;/td&gt;
</ins><span class="cx">                         &lt;/tr&gt;
</span><span class="cx"> 
</span><span class="cx">                         &lt;tr valign=&quot;top&quot;&gt;
</span></span></pre>
</div>
</div>

</body>
</html>