|
From: <gsc...@us...> - 2003-06-20 20:42:00
|
Update of /cvsroot/php-blog/serendipity
In directory sc8-pr-cvs1:/tmp/cvs-serv30936
Modified Files:
serendipity_functions.inc.php
Log Message:
escape potential html characters in title fin rss feed display.
Index: serendipity_functions.inc.php
===================================================================
RCS file: /cvsroot/php-blog/serendipity/serendipity_functions.inc.php,v
retrieving revision 1.69
retrieving revision 1.70
diff -u -d -r1.69 -r1.70
--- serendipity_functions.inc.php 20 Jun 2003 00:42:26 -0000 1.69
+++ serendipity_functions.inc.php 20 Jun 2003 20:41:57 -0000 1.70
@@ -626,7 +626,7 @@
if ($version == '0.91' || $version == '2.0' && is_array($entries)) {
foreach ($entries as $entry) {
echo "<item>\n";
- echo "<title>{$entry['title']}</title>\n";
+ echo "<title>".htmlentities($entry['title'])."</title>\n";
echo "<link>{$serendipity['baseURL']}archives/{$entry['id']}_".serendipity_makeFilename($entry['title']).".html</link>\n";
if ($version == '2.0') {
// extract author information
|
