Don't use `esc_html__()` on translation containing HTML.

Use `wp_kses()` instead, whitelisting the only HTML the string can
contain.
This commit is contained in:
Fränk Klein 2015-05-05 11:53:29 +02:00
parent 7c92e3e138
commit a7ad622e4c
1 changed files with 2 additions and 2 deletions

View File

@ -16,7 +16,7 @@
<div class="page-content"> <div class="page-content">
<?php if ( is_home() && current_user_can( 'publish_posts' ) ) : ?> <?php if ( is_home() && current_user_can( 'publish_posts' ) ) : ?>
<p><?php printf( esc_html__( 'Ready to publish your first post? <a href="%1$s">Get started here</a>.', '_s' ), esc_url( admin_url( 'post-new.php' ) ) ); ?></p> <p><?php printf( wp_kses( __( 'Ready to publish your first post? <a href="%1$s">Get started here</a>.', '_s' ), array( 'a' => array( 'href' => array() ) ) ), esc_url( admin_url( 'post-new.php' ) ) ); ?></p>
<?php elseif ( is_search() ) : ?> <?php elseif ( is_search() ) : ?>