[SM-CVS] CVS: squirrelmail/plugins/squirrelspell/modules lang_change.mod,1.13,1.14

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Update of /cvsroot/squirrelmail/squirrelmail/plugins/squirrelspell/modules
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv31210/plugins/squirrelspell/modules

Modified Files:
	lang_change.mod 
Log Message:
XSS fixes



Index: lang_change.mod
===================================================================
RCS file: /cvsroot/squirrelmail/squirrelmail/plugins/squirrelspell/modules/lang_change.mod,v
retrieving revision 1.13
retrieving revision 1.14
diff -u -w -r1.13 -r1.14

--- lang_change.mod	4 Jun 2005 21:46:05 -0000	1.13
+++ lang_change.mod	15 Jun 2005 23:07:08 -0000	1.14
@@ -39,7 +39,7 @@
 if (sizeof($new_langs)>1) {
   $dsp_string = '';
   foreach( $new_langs as $a) {
-    $dsp_string .= _(trim($a)) . ', ';
+    $dsp_string .= _(htmlspecialchars(trim($a))) . ', ';
   }
   // remove last comma and space
   $dsp_string = substr( $dsp_string, 0, -2 );



