- Data Validation issues have been found in your theme. All dynamic data must be correctly escaped for the context where it is rendered.
Please perform a global search for “echo $” and you will see several issues.
Who can I search for “echo $” ?
In whichever code editor you’re using, you should be able to search the theme’s directory for echo $ and it will locate those variables that are being output without validation. For example:
1 Like
textmate of course
Great! So you should be able to search:
Edit → Find → Find in Project… (⇧⌘F)
https://manual.macromates.com/en/working_with_multiple_files#find_and_replace_in_projects
1 Like
and what I should do with all of them esc_attr() ?
That depends on what you’re echo’ing. Here’s a good reference of common functions you can use:
5 Years Old Topic