Skip to content
Permalink
Browse files Browse the repository at this point in the history
Make sure the highlight string doesn't contain html tags.
  • Loading branch information
Bauffman committed Feb 14, 2012
1 parent 8fa74dd commit c8ec9c5
Showing 1 changed file with 4 additions and 1 deletion.
5 changes: 4 additions & 1 deletion backend/core/engine/base.php
Expand Up @@ -155,7 +155,10 @@ public function execute()
else $this->tpl->assign('reportMessage', BL::msg($messageName));

// highlight an element with the given id if needed
if($this->getParameter('highlight')) $this->tpl->assign('highlight', $this->getParameter('highlight'));
if($this->getParameter('highlight'))
{
$this->tpl->assign('highlight', strip_tags($this->getParameter('highlight')));
}
}

// is there an error to show?
Expand Down

0 comments on commit c8ec9c5

Please sign in to comment.