summaryrefslogtreecommitdiffstatshomepage
path: root/data/templates/bookmarks.tpl.php
diff options
context:
space:
mode:
authorGravatar cweiske2010-09-26 22:06:31 +0000
committerGravatar cweiske2010-09-26 22:06:31 +0000
commit8b45ba9e75a5d911906e95c3980e214eff9e61b0 (patch)
treecf355fefe071c3c1a482bf4c4d1169bb1697521d /data/templates/bookmarks.tpl.php
parentfbf28d0753338c23eaa2f44fd449911ef5bf1965 (diff)
downloadscuttle-8b45ba9e75a5d911906e95c3980e214eff9e61b0.tar.gz
scuttle-8b45ba9e75a5d911906e95c3980e214eff9e61b0.zip
escape the installation name; html code was broken when one had quotes in the name
git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@750 b3834d28-1941-0410-a4f8-b48e95affb8f
Diffstat (limited to 'data/templates/bookmarks.tpl.php')
-rw-r--r--data/templates/bookmarks.tpl.php5
1 files changed, 4 insertions, 1 deletions
diff --git a/data/templates/bookmarks.tpl.php b/data/templates/bookmarks.tpl.php
index 2eed9c3..e32d3c9 100644
--- a/data/templates/bookmarks.tpl.php
+++ b/data/templates/bookmarks.tpl.php
@@ -215,7 +215,10 @@ if ($currenttag!= '') {
$brss = '';
$size = count($rsschannels);
for ($i = 0; $i < $size; $i++) {
- $brss = '<a style="background:#FFFFFF" href="'. $rsschannels[$i][1] .'" title="'. $rsschannels[$i][0] .'"><img src="'. ROOT .'images/rss.gif" width="16" height="16" alt="'. $rsschannels[$i][0] .'" /></a>';
+ $brss = '<a style="background:#FFFFFF" href="'. htmlspecialchars($rsschannels[$i][1]) . '"'
+ . ' title="' . htmlspecialchars($rsschannels[$i][0]) . '">'
+ . '<img src="' . ROOT . 'images/rss.gif" width="16" height="16" alt="' . htmlspecialchars($rsschannels[$i][0]) .'"/>'
+ . '</a>';
}
$pagesBanner = '<p class="paging">'. $bfirst .'<span> / </span>'. $bprev .'<span> / </span>'. $bnext .'<span> / </span>'. $blast .'<span> / </span>'. sprintf(T_('Page %d of %d'), $page, $totalpages) ." ". $brss ." </p>\n";
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-07-05 23:00:15 +0000