diff options
| author | Andreas Gohr <andi@splitbrain.org> | 2005-10-18 22:06:33 +0200 |
|---|---|---|
| committer | Andreas Gohr <andi@splitbrain.org> | 2005-10-18 22:06:33 +0200 |
| commit | 0773871451ff132a1facfc32e30bf3e81a4e759a (patch) | |
| tree | cd4ff6aed015d2a733eb93a91c96a3d9e9f0b5ec | |
| parent | 640e78a86560dfde661fb09d1bdc13d333e89c87 (diff) | |
| download | rpg-0773871451ff132a1facfc32e30bf3e81a4e759a.tar.gz rpg-0773871451ff132a1facfc32e30bf3e81a4e759a.tar.bz2 | |
fix for XSS bug #595
darcs-hash:20051018200633-7ad00-959b25da1390a8d86e546b59ffe9a49094afb205.gz
| -rw-r--r-- | inc/parser/xhtml.php | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/inc/parser/xhtml.php b/inc/parser/xhtml.php index 73ef58767..f58b52029 100644 --- a/inc/parser/xhtml.php +++ b/inc/parser/xhtml.php @@ -676,6 +676,7 @@ class Doku_Renderer_xhtml extends Doku_Renderer { $link['class']='media'; } + $address = $this->_xmlEntities($address); $address = obfuscate($address); $title = $address; if(empty($name)){ |