From bd918dd38cdbc88dab2f9d3f2bf4e690df68911b Mon Sep 17 00:00:00 2001
From: francgrasso <francgrasso@gmail.com>
Date: Wed, 5 Aug 2020 12:19:33 +0200
Subject: [PATCH] add missing sanitizations to blogname and tagline

---
 inc/customizer/panels/site-identity.php | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/inc/customizer/panels/site-identity.php b/inc/customizer/panels/site-identity.php
index e24c1a8..b434e05 100644
--- a/inc/customizer/panels/site-identity.php
+++ b/inc/customizer/panels/site-identity.php
@@ -33,10 +33,11 @@
 $wp_customize->add_setting(
 	'blogname',
 	array(
-		'default'    => get_option( 'blogname' ),
-		'type'       => 'option',
-		'capability' => 'manage_options',
-		'priority'   => 10,
+		'default'           => get_option( 'blogname' ),
+		'type'              => 'option',
+		'capability'        => 'manage_options',
+		'priority'          => 10,
+		'sanitize_callback' => 'wp_filter_nohtml_kses',
 	)
 );
 
@@ -90,10 +91,11 @@
 $wp_customize->add_setting(
 	'blogdescription',
 	array(
-		'default'    => get_option( 'blogdescription' ),
-		'type'       => 'option',
-		'capability' => 'manage_options',
-		'priority'   => 100,
+		'default'           => get_option( 'blogdescription' ),
+		'type'              => 'option',
+		'capability'        => 'manage_options',
+		'priority'          => 100,
+		'sanitize_callback' => 'wp_filter_nohtml_kses',
 	)
 );