From c982edaa791b6391f86ce3cd66f673c05dce7218 Mon Sep 17 00:00:00 2001 From: Marcin Kolanko <marcin.kolanko@wpdesk.net> Date: Mon, 12 May 2025 17:05:09 +0200 Subject: [PATCH] fix: secure string --- src/WPDesk/Notice/Notice.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/WPDesk/Notice/Notice.php b/src/WPDesk/Notice/Notice.php index 9c95a73..d39c763 100644 --- a/src/WPDesk/Notice/Notice.php +++ b/src/WPDesk/Notice/Notice.php @@ -266,7 +266,7 @@ class Notice if ($this->addParagraphToContent()) { $noticeFormat = '<div %1$s><p>%2$s</p></div>'; } - echo sprintf($noticeFormat, $this->getAttributesAsString(), $this->noticeContent); + echo \wp_kses_post( sprintf($noticeFormat, $this->getAttributesAsString(), $this->noticeContent) ); } } -- GitLab