WordPress at a glance

esc_attr() WP 1.0

Escaping for HTML attributes.

Is the basis for: esc_attr_e(), esc_attr__()
Works based on: _wp_specialchars()
Hooks from function:
Return

String.

Usage

esc_attr( $text );
$text(string) (required)

Code of esc_attr: wp-includes/formatting.php VER 4.9.8

<?php
function esc_attr( $text ) {
	$safe_text = wp_check_invalid_utf8( $text );
	$safe_text = _wp_specialchars( $safe_text, ENT_QUOTES );
	/**
	 * Filters a string cleaned and escaped for output in an HTML attribute.
	 *
	 * Text passed to esc_attr() is stripped of invalid or special characters
	 * before output.
	 *
	 * @since 2.0.6
	 *
	 * @param string $safe_text The text after it has been escaped.
 	 * @param string $text      The text prior to being escaped.
	 */
	return apply_filters( 'attribute_escape', $safe_text, $text );
}

Related Functions

From tag: esc_ (clean validate sanitize)

More from category: Sanitizing, Escaping

No comments
    Hello, !     Log In . Register