diff options
| author | Dries Buytaert <dries@buytaert.net> | 2010-08-01 19:50:33 +0000 |
|---|---|---|
| committer | Dries Buytaert <dries@buytaert.net> | 2010-08-01 19:50:33 +0000 |
| commit | 201061715109fb89ead2c8cf9334ee910e1db89c (patch) | |
| tree | 46e564381a7c14fc8d88d07fbffb4be95eadaf32 | |
| parent | 1d48f07fc70e7b4af344f0729eec679b7c139664 (diff) | |
| download | brdo-201061715109fb89ead2c8cf9334ee910e1db89c.tar.gz brdo-201061715109fb89ead2c8cf9334ee910e1db89c.tar.bz2 | |
- Patch #864584 by cwgordon7: filter format names not properly escaped.
| -rw-r--r-- | modules/filter/filter.module | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/filter/filter.module b/modules/filter/filter.module index 6fb1f3cad..36db0db1a 100644 --- a/modules/filter/filter.module +++ b/modules/filter/filter.module @@ -1075,7 +1075,7 @@ function theme_filter_tips_more_info() { function theme_filter_guidelines($variables) { $format = $variables['format']; - $name = isset($format->name) ? '<label>' . $format->name . ':</label>' : ''; + $name = isset($format->name) ? '<label>' . check_plain($format->name) . ':</label>' : ''; $attributes['class'][] = 'filter-guidelines-item'; $attributes['class'][] = 'filter-guidelines-' . $format->format; return '<div' . drupal_attributes($attributes) . '>' . $name . theme('filter_tips', array('tips' => _filter_tips($format->format, FALSE))) . '</div>'; |