Changeset 11998


Ignore:
Timestamp:
Aug 26, 2011, 2:20:51 PM (13 years ago)
Author:
plg
Message:

feature 1729: protect thumbnail title against HTML special chars

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/include/functions.inc.php

    r11997 r11998  
    819819  }
    820820
    821   $title = strip_tags($title);
     821  $title = htmlspecialchars(strip_tags($title));
    822822
    823823  $title = trigger_event('get_thumbnail_title', $title, $info);
Note: See TracChangeset for help on using the changeset viewer.