From 9c6e88636803dbdd660991e2d9458be5a74dfbd2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?G=C3=A1bor=20Hojtsy?= <gabor@hojtsy.hu>
Date: Thu, 15 Nov 2007 23:55:52 +0000
Subject: #189409 by Arancaytar: use filter_xss() to filter content type
 descriptions, instead of printing them verbatim (on one occassion) and
 printing them with check_plain() erroneusly on another

---
 modules/node/node.pages.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'modules/node/node.pages.inc')

diff --git a/modules/node/node.pages.inc b/modules/node/node.pages.inc
index fe112af8c..cceb6bdf8 100644
--- a/modules/node/node.pages.inc
+++ b/modules/node/node.pages.inc
@@ -29,7 +29,7 @@ function theme_node_add_list($content) {
     $output = '<dl class="node-type-list">';
     foreach ($content as $item) {
       $output .= '<dt>'. l($item['title'], $item['href'], $item['options']) .'</dt>';
-      $output .= '<dd>'. $item['description'] .'</dd>';
+      $output .= '<dd>'. filter_xss($item['description']) .'</dd>';
     }
     $output .= '</dl>';
   }
-- 
cgit v1.2.3