The process of escaping data an important one, since the lack of thereof can lead to XSS and other naughty and unexpected things, among the legit data that just breaks specific data formats. Consider HTML attributes. Imagine you have the following simple code: $image_src = get_uploaded_image_src(); // not any specific function echo ‘<img src=”‘ . … Continue reading WordPress Escape Functions