diff options
| author | friendica <info@friendica.com> | 2013-12-12 02:01:42 -0800 |
|---|---|---|
| committer | friendica <info@friendica.com> | 2013-12-12 02:01:42 -0800 |
| commit | 941f81eb300074b203dd480924f9cf8b9d41a08d (patch) | |
| tree | 0492f70620c1ed2001153632b95fa976bbe967fd /mod/message.php | |
| parent | b3fe221b7fe9c6ecc151d9c00f36d3913526f6a3 (diff) | |
| download | volse-hubzilla-941f81eb300074b203dd480924f9cf8b9d41a08d.tar.gz volse-hubzilla-941f81eb300074b203dd480924f9cf8b9d41a08d.tar.bz2 volse-hubzilla-941f81eb300074b203dd480924f9cf8b9d41a08d.zip | |
check that every invocation of htmlspecialchars has the right arg list
Diffstat (limited to 'mod/message.php')
| -rw-r--r-- | mod/message.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/mod/message.php b/mod/message.php index bee3b68f3..b5420e5b3 100644 --- a/mod/message.php +++ b/mod/message.php @@ -321,7 +321,7 @@ function message_content(&$a) { '$preid' => $preid, '$subject' => t('Subject:'), '$subjtxt' => ((x($_REQUEST,'subject')) ? strip_tags($_REQUEST['subject']) : ''), - '$text' => ((x($_REQUEST,'body')) ? escape_tags(htmlspecialchars($_REQUEST['body'])) : ''), + '$text' => ((x($_REQUEST,'body')) ? htmlspecialchars($_REQUEST['body'], ENT_COMPAT, 'UTF-8') : ''), '$readonly' => '', '$yourmessage' => t('Your message:'), '$select' => $select, |