Hi,
We loop through post data against the field settings saved into the database. Then our system sanitize data on the basis of field type. ie: If field type is text, System will use sanitize_text_field. If it is Textarea then sanitize_textarea_field will be used etc.
Let me know if you have any more questions or you have any suggestions.
Hi.
What about input type “hidden”?
Hi,
As of now hidden fields are not sanitized. Thank you for bringing this. We will include it in next patch.
I am now rendering some simple HTML into this hidden ipnuts.
Just text and “br” tags.
Nothing harmful.
But “sanitize_text_field” will break my JS scripts and the whole process.
Is it possible to use this? https://codex.wordpress.org/Function_Reference/wp_kses
And somewhere allow tags? Or by default “br”?
Please 🙂
Thank you.
Hi there,
Could you please clarify the purpose of HTML in hidden field ?
