diff options
Diffstat (limited to 'includes/theme.inc')
| -rw-r--r-- | includes/theme.inc | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/includes/theme.inc b/includes/theme.inc index 46e76581d..2e7f87334 100644 --- a/includes/theme.inc +++ b/includes/theme.inc @@ -310,7 +310,7 @@ function theme_get_setting($setting_name, $refresh = FALSE) { $text = $value['text'][$i]; $link = $value['link'][$i]; if (substr($link, 0, 7) == 'http://') { - $settings[$type .'_links'][] = '<a href="'. $link .'"'. drupal_attributes($attributes) .'>'. $text .'</a>'; + $settings[$type .'_links'][] = '<a href="'. check_url($link) .'"'. drupal_attributes($attributes) .'>'. check_plain($text) .'</a>'; } else { $settings[$type .'_links'][] = l($text, $link, $attributes); @@ -818,7 +818,7 @@ function theme_item_list($items = array(), $title = NULL) { * Returns code that emits the 'more help'-link. */ function theme_more_help_link($url) { - return '<div class="more-help-link">' . t('[<a href="%link">more help...</a>]', array('%link' => $url)) . '</div>'; + return '<div class="more-help-link">' . t('[<a href="%link">more help...</a>]', array('%link' => check_url($url))) . '</div>'; } /** @@ -826,7 +826,7 @@ function theme_more_help_link($url) { */ function theme_xml_icon($url) { if ($image = theme('image', 'misc/xml.png', t('XML feed'), t('XML feed'))) { - return '<div class="xml-icon"><a href="'. $url .'">'. $image. '</a></div>'; + return '<div class="xml-icon"><a href="'. check_url($url) .'">'. $image. '</a></div>'; } } |