Adding inline JavaScript encoding issue

1) For escaping content of textarea you should use esc_textarea and not esc_attr.

2) You should not escape things when storing them in the DB, escaping should be done only at output time. (I assume that you can find an edge case in which it might be needed, but as a general rule, just don’t do it).

3) Asking users to insert JS code is very user hostile. In addition to the obvious security problem that might arise a general type of breakage is almost un avoidable… think someone doing $ = 'dollar';. It doesn’t help that if you go that way you have no way to sanitize anything and have to serve it raw.

Related Posts:

  1. Trigger Javascript on Gutenberg (Block Editor) Save
  2. Does javascript have an equivalent to PHP’s preg_replace_callback?
  3. WordPress problem with htmlentities
  4. esc_js() breaks unicode sequences by removing the slash ‘\’ character
  5. How to set javascript options for select2 in PHP array of plugin
  6. how to prevent added meta box from being injected with style=”position: fixed; top: 56px;” at scroll down
  7. How are cookie values encoded?
  8. How to Create a Repeatable Meta Box
  9. Metabox conditionals depending on post format and template in Gutenberg
  10. How can I generate a rainbow circle using HTML5 canvas?
  11. What’s the difference between “{}” and “[]” while declaring a JavaScript array?
  12. What does “javascript:void(0)” mean?
  13. For-each over an array in JavaScript
  14. How to delete a cookie?
  15. What is TypeScript and why would I use it in place of JavaScript? [closed]
  16. How do you use the ? : (conditional) operator in JavaScript?
  17. Which equals operator (== vs ===) should be used in JavaScript comparisons?
  18. are there dictionaries in javascript like python?
  19. How to do associative array/hashing in JavaScript
  20. How to make a discord bot create an invite for every server it joins?
  21. ES6 Map in Typescript
  22. addEventListener vs onclick
  23. “Uncaught SyntaxError: Cannot use import statement outside a module” when importing ECMAScript 6
  24. How do I check if an array includes a value in JavaScript?
  25. JavaScript document.getElementById().value logs empty value
  26. How do I color a hexagonal grid such that it doesn’t have neighbors of the same color?
  27. How to format a JavaScript date
  28. What does href expression do?
  29. map function for objects (instead of arrays)
  30. Wait 5 seconds before executing next line
  31. Failed to load resource: the server responded with a status of 404 (Not Found)
  32. How to check whether a string contains a substring in JavaScript?
  33. Check if a string has a certain piece of text [duplicate]
  34. Kadane’s algorithm explained
  35. What is console.log?
  36. Dynamically creating charts of each row in an HTML table with chart.js
  37. Failed to load resource: the server responded with a status of 404 (Not Found)
  38. How to convert a string to an integer in JavaScript?
  39. Maximum call stack size exceeded error
  40. How to change CSS using jQuery?
  41. How to properly use jsPDF library
  42. How to reload a page using JavaScript
  43. How can I do string interpolation in JavaScript?
  44. Can I use complex HTML with Twitter Bootstrap’s Tooltip?
  45. Start script missing error when running npm start
  46. How do I redirect to another webpage?
  47. How to round to at most 2 decimal places, if necessary?
  48. What is VanillaJS?
  49. Invariant Violation: Objects are not valid as a React child
  50. How do I make the first letter of a string uppercase in JavaScript?
  51. How to handle Uncaught (in promise) DOMException: The play() request was interrupted by a call to pause()
  52. window.location.href and window.open () methods in JavaScript
  53. Invariant Violation: Objects are not valid as a React child
  54. What’s the difference between using “let” and “var”?
  55. Angular: conditional class with *ngClass
  56. How do I make the first letter of a string uppercase in JavaScript?
  57. Loop through an array in JavaScript
  58. How to format a JavaScript date
  59. What does this symbol () => mean in Javascript? [duplicate]
  60. How do I redirect to another webpage?
  61. Google reCAPTCHA V3.0 not working. “ERROR for site owner: Invalid key type”
  62. How to round to at most 2 decimal places, if necessary?
  63. Google Chrome Uncaught (in promise) DOMException while playing AUDIO
  64. Define a global variable in a JavaScript function
  65. “SyntaxError: Unexpected token < in JSON at position 0"
  66. How to add a class to a given element?
  67. Can’t bind to ‘ngModel’ since it isn’t a known property of ‘input’
  68. Javascript split regex question
  69. Cross-Origin Read Blocking (CORB)
  70. What is Virtual DOM?
  71. How can I remove a specific item from an array?
  72. How can a Discord bot create a hyperlink in a Discord message in an embed or in general? [closed]
  73. Find object by id in an array of JavaScript objects
  74. jQuery append() vs appendChild()
  75. How can I access and process nested objects, arrays or JSON?
  76. How to you store data for each discord user in the discord server?
  77. How to get all place details from a Place Details Request using Google Places API Web Service?
  78. How to make a word underline in Markdown
  79. Cannot set property ‘innerHTML’ of null
  80. Creating multiline strings in JavaScript
  81. How to replace innerHTML of a div using jQuery?
  82. SyntaxError: Unexpected token o in JSON at position 1
  83. Uncaught ReferenceError: $ is not defined?
  84. Cannot read property ‘addEventListener’ of null
  85. Uncaught ReferenceError: jQuery is not defined [duplicate]
  86. ChartJS beginAtZero, min, max doesn’t work
  87. How do I check whether a checkbox is checked in jQuery?
  88. Babel 6 regeneratorRuntime is not defined
  89. How to use Redirect in the new react-router-dom of Reactjs
  90. syntax error: unexpected token <
  91. How to define type for a function callback (as any function type, not universal any) used in a method parameter
  92. how to fix : ” TypeError: Cannot read property ‘addEventListener’ of null”…?//
  93. Cannot set property InnerHTML of null [duplicate]
  94. Error OPTIONS net::ERR_CONNECTION_REFUSED
  95. SyntaxError: Unexpected token o in JSON at position 1
  96. What is JSONP, and why was it created?
  97. TypeError: Converting circular structure to JSON in nodejs
  98. ReferenceError: $ is not defined
  99. How to fix “Cannot read property ‘addEventListener’ of null” error [duplicate]
  100. Uncaught ReferenceError: jQuery is not defined [duplicate]
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)