stklcode/wp-liveticker
1
0
Fork 0
Code Issues Releases 7 Activity

add a note on cross-site-scripting to JS feature description (#30)
All checks were successful
continuous-integration/drone/push Build is passing
Details

Browse Source
This commit is contained in:
Stefan Kalscheuer 2025-03-04 17:49:22 +01:00
parent d6ae2fe437
commit a6a48dad58
Signed by: stefan
GPG Key ID: 3887EC2A53B55430
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
includes/class-settings.php
View File

@ -243,7 +243,9 @@ class Settings extends SCLiveticker {
'embedded-script',
'[embedded_script]',
self::$options['embedded_script'],
__( 'Allow embedded script evaluation in tick contents. This might be useful for embedded content, e.g. social media integrations.', 'stklcode-liveticker' ),
__( 'Allow embedded script evaluation in tick contents. This might be useful for embedded content, e.g. social media integrations.', 'stklcode-liveticker' ) .
' ' .
__( 'Be aware that this feature potentially enables cross-site scripting, so make sure content is created by trusted people and only enable this if required.', 'stklcode-liveticker' ),
__( 'Allow JavaScript in tick content', 'stklcode-liveticker' )
);
}