Permalink
Browse files

MDL-28726 wiki-2.0: Fixed XSS in wiki comments

  • Loading branch information...
1 parent 3df2ab8 commit 7039fa8d96319ab0e8b269fecd51f446a64319f2 Rajesh Taneja committed Sep 16, 2011
Showing with 1 addition and 1 deletion.
  1. +1 −1 mod/wiki/pagelib.php
View
@@ -643,7 +643,7 @@ function print_content() {
$parsedcontent = wiki_parse_content('nwiki', $comment->content, $options);
}
- $cell4->text = html_entity_decode($parsedcontent['parsed_text']);
+ $cell4->text = format_text(html_entity_decode($parsedcontent['parsed_text']), FORMAT_HTML);
} else {
$cell4->text = format_text($comment->content, FORMAT_HTML);
}

0 comments on commit 7039fa8

Please sign in to comment.