# HG changeset patch
# User Dan
# Date 1247093344 14400
# Node ID 6a04793ae13cf10fccd86aeb637e5bfd40d6c469
# Parent  61354f877e06f3f4c479a78070f15585b200c1a7
SECURITY: Fixed potential XSS in $output->set_title() (introduced: 1.1.6)

diff -r 61354f877e06 -r 6a04793ae13c includes/output.php
--- a/includes/output.php	Mon Jul 06 11:27:02 2009 -0400
+++ b/includes/output.php	Wed Jul 08 18:49:04 2009 -0400
@@ -187,7 +187,7 @@
   {
     global $template;
     $template->assign_vars(array(
-        'PAGE_NAME' => $title
+        'PAGE_NAME' => htmlspecialchars($title)
       ));
   }
 }