aboutsummaryrefslogtreecommitdiff
path: root/mod/groups/views/default/object
diff options
context:
space:
mode:
authormarcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544>2009-07-17 12:40:26 +0000
committermarcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544>2009-07-17 12:40:26 +0000
commit72892ed140d2bf8e60b8a17ca8ec39bd92e59ee5 (patch)
tree0bd3bb2252d21d44dc5400062eb71e82f2b2378b /mod/groups/views/default/object
parentf2f01ca95b0987f95d6deac4b40407ce3435c118 (diff)
downloadelgg-72892ed140d2bf8e60b8a17ca8ec39bd92e59ee5.tar.gz
elgg-72892ed140d2bf8e60b8a17ca8ec39bd92e59ee5.tar.bz2
Closes #1131: htmlentities in view around user text
git-svn-id: https://code.elgg.org/elgg/trunk@3408 36083f99-b078-4883-b0ff-0f9b5a30f544
Diffstat (limited to 'mod/groups/views/default/object')
-rw-r--r--mod/groups/views/default/object/groupforumtopic.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/mod/groups/views/default/object/groupforumtopic.php b/mod/groups/views/default/object/groupforumtopic.php
index a6d214fcf..a35aa3f87 100644
--- a/mod/groups/views/default/object/groupforumtopic.php
+++ b/mod/groups/views/default/object/groupforumtopic.php
@@ -11,7 +11,7 @@
*/
//get the required variables
- $title = $vars['entity']->title;
+ $title = htmlentities($vars['entity']->title, ENT_QUOTES, 'UTF-8');
//$description = get_entity($vars['entity']->description);
$topic_owner = get_user($vars['entity']->owner_guid);
$group = get_entity($vars['entity']->container_guid);
@@ -40,7 +40,7 @@
$icon = elgg_view("profile/icon",array('entity' => $group, 'size' => 'small'));
//get the group and topic title
if ($group instanceof ElggGroup)
- $info .= "<p>" . elgg_echo('group') . ": <a href=\"{$group->getURL()}\">{$group->name}</a></p>";
+ $info .= "<p>" . elgg_echo('group') . ": <a href=\"{$group->getURL()}\">".htmlentities($group->name, ENT_QUOTES, 'UTF-8') ."</a></p>";
$info .= "<p>" . elgg_echo('topic') . ": <a href=\"{$vars['url']}mod/groups/topicposts.php?topic={$vars['entity']->guid}&group_guid={$group->guid}\">{$title}</a></p>";
//get the forum description