diff -r cb7dde69c301 -r d7fc25acd3f3 includes/pageutils.php
--- a/includes/pageutils.php Wed Aug 01 13:39:27 2007 -0400
+++ b/includes/pageutils.php Sun Aug 05 15:58:50 2007 -0400
@@ -608,13 +608,14 @@
// Action taken
echo '| ';
+ // Some of these are sanitized at insert-time. Others follow the newer Enano policy of stripping HTML at runtime.
if ($r['action']=='prot') echo 'Protected page | Reason: '.$r['edit_summary'];
elseif($r['action']=='unprot') echo 'Unprotected page | Reason: '.$r['edit_summary'];
elseif($r['action']=='semiprot') echo 'Semi-protected page | Reason: '.$r['edit_summary'];
- elseif($r['action']=='rename') echo 'Renamed page | Old title: '.$r['edit_summary'];
+ elseif($r['action']=='rename') echo 'Renamed page | Old title: '.htmlspecialchars($r['edit_summary']);
elseif($r['action']=='create') echo 'Created page | ';
elseif($r['action']=='delete') echo 'Deleted page | Reason: '.$r['edit_summary'];
- elseif($r['action']=='reupload') echo 'Uploaded new file version | Reason: '.$r['edit_summary'];
+ elseif($r['action']=='reupload') echo 'Uploaded new file version | Reason: '.htmlspecialchars($r['edit_summary']);
echo ' | ';
// Actions!