Skip to content
This repository has been archived by the owner on Aug 13, 2022. It is now read-only.


Browse files Browse the repository at this point in the history
correct description sanitizing for text escape strategy
  • Loading branch information
Guite committed Sep 18, 2021
1 parent 0171d4f commit a91ad18
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion Twig/TwigExtension.php
Expand Up @@ -202,7 +202,7 @@ public function escapeDescription($entity)
case 'raw':
return $description;
case 'text':
return nl2br(htmlentities($description));
return nl2br(htmlspecialchars($description));
case 'markdown':
return $this->markdownExtra->transform($description);
Expand Down

0 comments on commit a91ad18

Please sign in to comment.