改善多行个人说明文本显示 #975
Open
改善多行个人说明文本显示 #975
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
修改author页面css,以支持正常显示多行个人介绍说明
1.修复多行作者个人介绍无法正常换行显示问题 2.添加xss代码攻击过滤处理步骤
添加个人介绍文本转义步骤,防止xss攻击
KotoriK
reviewed
Nov 9, 2024
| @@ -63,9 +63,12 @@ | |||
| if (empty($author_description)) { | |||
| $author_description = __('This author has not provided a description.', 'sakurairo'); | |||
| } | |||
| // 对描述内容进行转义,防止XSS攻击 | |||
| $safe_description = htmlspecialchars($author_description, ENT_QUOTES, 'UTF-8'); | |||
There was a problem hiding this comment.
因已有代码进行空字符串判断和填充,为尽量减少对已有代码的改动,故新设置变量$safe_description
There was a problem hiding this comment.
但你只设置ENT_QUOTES而不设置HTML实体的FLAG的话实现不了你注释的效果吧
|
本身就没有必要去硬适配过长的介绍 适度增加即可 不需要滚动栏 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
1.修改css和php代码,以适应多行的个人说明文本正常显示
2.增加获取个人说明函数get_the_author_meta('description')后,进行文本过滤转义步骤,防止xss攻击