Ignore:
Timestamp:
Apr 7, 2012, 11:16:02 PM (12 years ago)
Author:
plg
Message:

merge r13961 from branch 2.3 to trunk

bug 2612 fixed: sanitize $_GETinstallstatus before display for
themes/languages/plugins installation

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/admin/themes_new.php

    r12922 r13962  
    103103      array_push(
    104104        $page['errors'],
    105         sprintf(l10n('An error occured during extraction (%s).'), $_GET['installstatus'])
     105        sprintf(l10n('An error occured during extraction (%s).'), htmlspecialchars($_GET['installstatus']))
    106106        );
    107107  } 
Note: See TracChangeset for help on using the changeset viewer.