aboutsummaryrefslogtreecommitdiff
path: root/views/default/output/url.php
diff options
context:
space:
mode:
authorewinslow <ewinslow@36083f99-b078-4883-b0ff-0f9b5a30f544>2010-11-20 08:25:52 +0000
committerewinslow <ewinslow@36083f99-b078-4883-b0ff-0f9b5a30f544>2010-11-20 08:25:52 +0000
commit9f41e8b1a34044d654ce3c6381efe3b3e2030c35 (patch)
tree28ac27966e2c0b7726a865138eb6a21f7f38dad1 /views/default/output/url.php
parenta906ef7dcc58bce7f54b5b3a2c2692b84f6a1b54 (diff)
downloadelgg-9f41e8b1a34044d654ce3c6381efe3b3e2030c35.tar.gz
elgg-9f41e8b1a34044d654ce3c6381efe3b3e2030c35.tar.bz2
Fixes #2036: using htmlspecialchars in output views
git-svn-id: http://code.elgg.org/elgg/trunk@7368 36083f99-b078-4883-b0ff-0f9b5a30f544
Diffstat (limited to 'views/default/output/url.php')
-rw-r--r--views/default/output/url.php6
1 files changed, 3 insertions, 3 deletions
diff --git a/views/default/output/url.php b/views/default/output/url.php
index 23b774198..6e77a1984 100644
--- a/views/default/output/url.php
+++ b/views/default/output/url.php
@@ -7,7 +7,7 @@
* @subpackage Core
*
* @uses string $vars['text'] The string between the <a></a> tags.
- * @uses bool $vars['encode_text'] Run $vars['text'] through htmlentities()?
+ * @uses bool $vars['encode_text'] Run $vars['text'] through htmlspecialchars()?
* @uses bool $vars['is_action'] Is this a link to an action?
*
*/
@@ -21,14 +21,14 @@ if (!$url and isset($vars['value'])) {
if (!empty($url)) {
if (isset($vars['text'])) {
if (isset($vars['encode_text']) && $vars['encode_text']) {
- $text = htmlentities($vars['text'], ENT_QUOTES, 'UTF-8');
+ $text = htmlspecialchars($vars['text'], ENT_QUOTES, 'UTF-8');
} else {
$text = $vars['text'];
}
unset($vars['text']);
} else {
- $text = htmlentities($url, ENT_QUOTES, 'UTF-8');
+ $text = htmlspecialchars($url, ENT_QUOTES, 'UTF-8');
}
unset($vars['encode_text']);
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-30 22:47:16 +0000