Mercurial Mercurial > repos > enano-1.1 / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
SECURITY: Fixed potential XSS in $output->set_title() (introduced: 1.1.6)
authorDan
Wed, 08 Jul 2009 18:49:04 -0400
changeset 1038 6a04793ae13c
parent 1037 61354f877e06
child 1039 4226cedb3bc4
SECURITY: Fixed potential XSS in $output->set_title() (introduced: 1.1.6)
includes/output.php file | annotate | diff | comparison | revisions 
--- a/includes/output.php	Mon Jul 06 11:27:02 2009 -0400
+++ b/includes/output.php	Wed Jul 08 18:49:04 2009 -0400
@@ -187,7 +187,7 @@
   {
     global $template;
     $template->assign_vars(array(
-        'PAGE_NAME' => $title
+        'PAGE_NAME' => htmlspecialchars($title)
       ));
   }
 }
Enano CMS (1.1.x)