The more elaborate data is, the harder it is to both formulate and implement sanitization process. For a number this might be as simple as “integer” and (int)$number. For HTML this is highly not trivial with different possibilities of desired scope (no HTML tags? some blacklisted tags? some whitelisted tags? what about embedded scripts? CSS?) … Read more
You need to escape data while displaying also. Use esc_attr in your case. Try this: <input type=”text” name=”field_name” value=”<?php echo (!empty($field)) ? esc_attr( $field ) : ”; ?>” /> Check this for full documentation – https://codex.wordpress.org/Data_Validation
I’m not sure if this is a bug, but it need further investigation. I’ve run a few quick tests on the name field in a tax_query, and whenever a term name has got a special character or have more than one word, the tax_query is excluded from the SQL query TEST 1 I have use … Read more
Escaping and sanitization
I’m not sure if this is a bug, but it need further investigation. I’ve run a few quick tests on the name field in a tax_query, and whenever a term name has got a special character or have more than one word, the tax_query is excluded from the SQL query TEST 1 I have use … Read more
I belive all your numbers are saved as array to your option. So get_option($this->plugin_name.’cc’) should give you an array $options. While adding get this array first, insert a new element to the array $options[] = ‘new element’ ; . Now save this array to your option again with modified $options.
Yes, you can validate data using jquery before submitting form. There is a way custom way to do that by checking the fields value length `$(document).ready(function(){ $(“#form”).submit(function(){ var field_value = $(‘input[name=”some_name”]’).val(); if(field_value.length>0){ return true; } else{ return false; } }); });` Or you can use a jquery validation library. https://jqueryvalidation.org/
Try Like below function fhaac_subject_box_callback( $post ){ wp_nonce_field( basename(__FILE__ ), ‘fhacc_subject_nounce’); $fhaac_stored_subject_meta = get_post_meta( ‘$post->ID’ ); $fhaac_subject_name = get_post_meta($post->ID, ‘my_data_subjectName’, true); ?> <div>Subject name: <input type=”text” name=”fhaac_subject_name” id=”fhaac_ subject_name” value=”<?= $fhaac_subject_name; ?>”/></div>
Form Sanitization and Validation
You don’t need the input_attrs, you need choices. This is what I do: function mytheme_sanitize_choice( $input, $setting ) { $control = $setting->manager->get_control( $setting->id ); $valid = $control->choices; return array_key_exists( $input, $valid ) ? $input : $setting->default; }