diff options
Diffstat (limited to 'boot.php')
| -rw-r--r-- | boot.php | 4 |
1 files changed, 3 insertions, 1 deletions
@@ -190,7 +190,9 @@ function notags($string) { // The PHP built-in tag escape function has traditionally been buggy if(! function_exists('escape_tags')) { function escape_tags($string) { - return(str_replace(array("<",">","&"), array('<','>','&'), $string)); + return(str_replace( + array('&', '"', "'", '<', '>'), + array('&', '"', ''', '<', '>'), $string)); }} if(! function_exists('login')) { |