Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Browse files

MDL-15392: fix output sanitization.

  • Loading branch information...
commit cd4a340157e5fc88d69923f1b04dd7bb5225bfcd 1 parent 7446f0d
scyrma authored
Showing with 2 additions and 2 deletions.
  1. +2 −2 blog/lib.php
View
4 blog/lib.php
@@ -154,9 +154,9 @@ function blog_print_entry($blogEntry, $viewtype='full', $filtertype='', $filters
global $USER, $CFG, $COURSE, $ME;
$template['body'] = format_text($blogEntry->summary, $blogEntry->format);
- $template['title'] = '<a name="'. $blogEntry->subject .'"></a>';
+ $template['title'] = '<a name="'. s($blogEntry->subject) .'"></a>';
//enclose the title in nolink tags so that moodle formatting doesn't autolink the text
- $template['title'] .= '<span class="nolink">'.$blogEntry->subject.'</span>';
+ $template['title'] .= '<span class="nolink">'. format_string($blogEntry->subject) .'</span>';
$template['userid'] = $blogEntry->userid;
$template['author'] = fullname(get_record('user','id',$blogEntry->userid));
$template['lastmod'] = userdate($blogEntry->lastmodified);
Please sign in to comment.
Something went wrong with that request. Please try again.