Skip to content
Snippets Groups Projects
Commit 163c2842 authored by Phy's avatar Phy
Browse files

Fix RSS syntax XSS bug (#2081)

parent e4fa63f3
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
inc/parser/xhtml.php
+ 1
1
View file @ 163c2842
...@@ -1287,7 +1287,7 @@ class Doku_Renderer_xhtml extends Doku_Renderer { ...@@ -1287,7 +1287,7 @@ class Doku_Renderer_xhtml extends Doku_Renderer {
if($author) { if($author) {
$name = $author->get_name(); $name = $author->get_name();
if(!$name) $name = $author->get_email(); if(!$name) $name = $author->get_email();
if($name) $this->doc .= ' '.$lang['by'].' '.$name; if($name) $this->doc .= ' '.$lang['by'].' '.hsc($name);
} }
} }
if($params['date']) { if($params['date']) {
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment