diff options
Diffstat (limited to 'vendor/smarty/smarty/libs/plugins/modifier.escape.php')
-rw-r--r-- | vendor/smarty/smarty/libs/plugins/modifier.escape.php | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/vendor/smarty/smarty/libs/plugins/modifier.escape.php b/vendor/smarty/smarty/libs/plugins/modifier.escape.php index 11e44682e..e168679c3 100644 --- a/vendor/smarty/smarty/libs/plugins/modifier.escape.php +++ b/vendor/smarty/smarty/libs/plugins/modifier.escape.php @@ -115,7 +115,9 @@ function smarty_modifier_escape($string, $esc_type = 'html', $char_set = null, $ // see https://html.spec.whatwg.org/multipage/scripting.html#restrictions-for-contents-of-script-elements '<!--' => '<\!--', '<s' => '<\s', - '<S' => '<\S' + '<S' => '<\S', + "`" => "\\\\`", + "\${" => "\\\\\\$\\{" ) ); case 'mail': |