Skip to content
Permalink
Browse files Browse the repository at this point in the history
[XSS fixed] add percent-encoding header.thtml
  • Loading branch information
ivywe committed Aug 16, 2016
1 parent ad27355 commit beba390
Show file tree
Hide file tree
Showing 3 changed files with 3 additions and 3 deletions.
2 changes: 1 addition & 1 deletion public_html/layout/bento/header.thtml
Expand Up @@ -16,7 +16,7 @@

<meta name="twitter:image:height" content="400"{xhtml}>
<meta name="twitter:image:width" content="500"{xhtml}>
<meta name="twitter:url" content="<?php echo COM_getCurrentURL(); ?>"{xhtml}>
<meta name="twitter:url" content="<?php echo htmlspecialchars(COM_getCurrentURL(), ENT_QUOTES, 'utf-8'); ?>"

{feed_url}
{rel_links}
Expand Down
2 changes: 1 addition & 1 deletion public_html/layout/default/header.thtml
Expand Up @@ -20,7 +20,7 @@

<meta name="twitter:image:height" content="400"{xhtml}>
<meta name="twitter:image:width" content="500"{xhtml}>
<meta name="twitter:url" content="<?php echo COM_getCurrentURL(); ?>"{xhtml}>
<meta name="twitter:url" content="<?php echo htmlspecialchars(COM_getCurrentURL(), ENT_QUOTES, 'utf-8'); ?>"

{feed_url}
{rel_links}
Expand Down
2 changes: 1 addition & 1 deletion public_html/layout/fotos/header.thtml
Expand Up @@ -15,7 +15,7 @@

<meta name="twitter:image:height" content="400"{xhtml}>
<meta name="twitter:image:width" content="500"{xhtml}>
<meta name="twitter:url" content="<?php echo COM_getCurrentURL(); ?>"{xhtml}>
<meta name="twitter:url" content="<?php echo htmlspecialchars(COM_getCurrentURL(), ENT_QUOTES, 'utf-8'); ?>"

{feed_url}
{rel_links}
Expand Down

0 comments on commit beba390

Please sign in to comment.