diff options
| author | Dries Buytaert <dries@buytaert.net> | 2007-01-10 15:17:51 +0000 |
|---|---|---|
| committer | Dries Buytaert <dries@buytaert.net> | 2007-01-10 15:17:51 +0000 |
| commit | 74e3c74b813c2da89d99c86bc1f6d8f11d978fba (patch) | |
| tree | df794b05f6dce316232280cd41d0ff3f015401a7 /modules/user | |
| parent | 414b5e3901271b91bebdd03c3abe00f507dbc87c (diff) | |
| download | brdo-74e3c74b813c2da89d99c86bc1f6d8f11d978fba.tar.gz brdo-74e3c74b813c2da89d99c86bc1f6d8f11d978fba.tar.bz2 | |
- Always check the username.
Diffstat (limited to 'modules/user')
| -rw-r--r-- | modules/user/user.module | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/modules/user/user.module b/modules/user/user.module index 34e935daa..f2ffe0fac 100644 --- a/modules/user/user.module +++ b/modules/user/user.module @@ -554,7 +554,7 @@ function user_block($op = 'list', $delta = 0, $edit = array()) { case 1: if ($menu = theme('menu_tree')) { - $block['subject'] = $user->uid ? $user->name : t('Navigation'); + $block['subject'] = $user->uid ? check_plain($user->name) : t('Navigation'); $block['content'] = $menu; } return $block; @@ -1431,7 +1431,7 @@ function user_edit($category = 'account') { } $form['#attributes']['enctype'] = 'multipart/form-data'; - drupal_set_title($account->name); + drupal_set_title(check_plain($account->name)); return $form; } @@ -1517,7 +1517,7 @@ function user_view($uid = 0) { $function($account, $fields); } - drupal_set_title($account->name); + drupal_set_title(check_plain($account->name)); return theme('user_profile', $account, $fields); } |