diff options
Diffstat (limited to 'data/templates')
| -rw-r--r-- | data/templates/default/top.inc.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/templates/default/top.inc.php b/data/templates/default/top.inc.php index 17ec982..f2adba4 100644 --- a/data/templates/default/top.inc.php +++ b/data/templates/default/top.inc.php @@ -49,7 +49,7 @@ if(!isset($_GET['popup'])) { <?php if (isset($subtitle)) { - echo '<h2>'. $subtitle ."</h2>\n"; + echo '<h2>'. htmlspecialchars($subtitle) ."</h2>\n"; } if(DEBUG_MODE) { echo '<p class="error">'. T_('Admins, your installation is in "Debug Mode" ($debugMode = true). To go in "Normal Mode" and hide debugging messages, change $debugMode to false into config.php.') ."</p>\n"; |