I would suggest to think in this way: if I can not sanitize whole query (as you can not, what does sanitized mean? Is DELETE or DROP malicious or wanted query? Your plugin would have to be able to determinate the intended purpose of each query ant it is unreachable.), you can predict it’s content. … Read more
Most likely you have an undefined array index. You can check if the array index exists with isset() like this: if(isset($some_array[$some_index])){ } So check all your arrays in the options-framework.php file. You can try for example: if ( isset($option[‘type’]) && isset($input[$id]) && has_filter( ‘of_sanitize_’ . $option[‘type’] ) ) { $clean[$id] = apply_filters( ‘of_sanitize_’ . $option[‘type’], … Read more
Network requests during page load are very heavy action and should be avoided at all cost. WordPress has wp cron functionality to work with scheduled events and depending on your data requirements you might map data to Custom Post Type, store it in custom table or maybe more simply use caching API such as Transients … Read more
It’s because you have typos in your code : in the function called header_logo_validate() it should be : return $new_input; EDIT: add_action( ‘admin_menu’, ‘ec1_admin’, 10, 0 ); args are useless just write add_action( ‘admin_menu’, ‘ec1_admin’); EDIT 2 : This is not a correct way to add several fields. You should put this into arrays or … Read more
It seems that esc URL was the culprit. Even though I wanted to hard code the base URL eg. http://facebook.com/ I was esc_url’ing the input field for which to append to the base. I’ve switched to using a regular text field and am esc_url’ing the entire output string.
validate_file doesn’t quite work the way you’re expecting it to – it checks if $file is in the allowed files array, not just its extension/mime type. You’re looking for wp_check_filetype. However, all that ultimately does is check the extension (i.e. it doesn’t read the headers of the file/ascertain the mime type otherwise). Unless you implement … Read more
solved it so: $part_brand = get_terms(‘brands’, ‘hide_empty=0′); <label for=”part_brand”>Бренд</label> <select name=”part_brand” id=’part_brand’> <option value=”” <?php **$brand_names = wp_get_object_terms($post->ID, ‘brands’);** if (!count($brand_names)) echo “selected”; ?>>None</option> <?php foreach($part_brand as $brand) { if (!is_wp_error($brand_names) && !empty($brand_names) && !strcmp($brand->slug, $brand_names[0]->slug)) echo “<option value=”” . $brand->slug . “” selected>” . $brand->name . “</option>\n”; else echo “<option value=”” . $brand->slug . … Read more
As @karpstrucking mentioned in the comments, the problem was in the end with my function: my_string_manipulation_function() I was using preg_replace() to process the string of native language character, but I didn’t used the /u flag modifier to specify that I’m working with unicode characters. Adding this flag fixed all weird behaviour.
Sanitize html, where to sanitize
Well, I never got any input on this and ended up going with the function sanitize_title which is more restrictive than I want (processes the title to be used in a URL — essentially returns a slug for the post), but it’s the best solution I’ve been able to find. By running both the 3rd-party … Read more