/** * Escapes and wraps a $variable (string|array of strings) * @param array|string $var variable which will be wrapped in double-quotes and escaped * @return array|string */ public static function escapeVar($var) { if (is_array($var)) { foreach ($var as $varKey => $varField) { // recursive escaping $var[$varKey] = self::escapeVar($varField); } } elseif (is_string($var)) { $db = WordPress::getDb(); $var = '"' . $db->_escape($var) . '"'; } else { // what else ?? } return $var; }