Browse Source

Escape variables

master
Amir Reza Mehrbakhsh 2 years ago
parent
commit
56b0b7e34c
1 changed files with 2 additions and 2 deletions
  1. +2
    -2
      Planist.php

+ 2
- 2
Planist.php View File

@ -4,7 +4,7 @@
* Plugin Name: Planist * Plugin Name: Planist
* Plugin URI: https://planist.live * Plugin URI: https://planist.live
* Description: Planist Shortcode and Block * Description: Planist Shortcode and Block
* Version: 1.0
* Version: 1.0.0
* Author: Parsa Kafi * Author: Parsa Kafi
* Author URI: https://parsa.ws * Author URI: https://parsa.ws
*/ */
@ -64,7 +64,7 @@ class Planist
$style = apply_filters('planist_iframe_style', $style, $url); $style = apply_filters('planist_iframe_style', $style, $url);
return '<iframe src="' . $url . '" title="' . ucwords($username) . ' Booking Page" width="100%" height="100%" style="' . $style . '"></iframe>';
return '<iframe src="' . esc_url($url) . '" title="' . esc_attr(ucwords($username)) . ' Booking Page" width="100%" height="100%" style="' . $style . '"></iframe>';
} }
} }


Loading…
Cancel
Save