WP PLUGIN　申請指摘事項の修正

・$_POSTのサニタイズ・echoのエスケープ・readmeの修正
2021-06-17 14:00:18 +09:00
parent e3c8fc967c
commit 00d6775f77
12 changed files with 91 additions and 80 deletions
@@ -433,10 +433,10 @@ value="meta_value_num"' . self::set_search_normal_checked( $value_type, 'meta_va

 		public static function input_post_filter( $var_name, $type ) {
 			if ( $type == 'array' ) {
-				return filter_input( INPUT_POST, $var_name, FILTER_DEFAULT, FILTER_REQUIRE_ARRAY );
+				return filter_input( INPUT_POST, $var_name, FILTER_SANITIZE_STRING, FILTER_REQUIRE_ARRAY );
 			}
 			if ( $type == 'str' ) {
-				return filter_input( INPUT_POST, $var_name );
+				return filter_input( INPUT_POST, $var_name, FILTER_SANITIZE_STRING );
 			}
 		}