As a further precaution, use wfOpenElement() and wfCloseElement()

author Rob Church <robchurch@users.mediawiki.org>

Thu, 13 Jul 2006 10:06:24 +0000 (10:06 +0000)

committer Rob Church <robchurch@users.mediawiki.org>

Thu, 13 Jul 2006 10:06:24 +0000 (10:06 +0000)
author Rob Church <robchurch@users.mediawiki.org>
Thu, 13 Jul 2006 10:06:24 +0000 (10:06 +0000)
committer Rob Church <robchurch@users.mediawiki.org>
Thu, 13 Jul 2006 10:06:24 +0000 (10:06 +0000)
diff --git a/includes/EditPage.php b/includes/EditPage.php

index f41e85c..c795140 100644 (file)
--- a/includes/EditPage.php
+++ b/includes/EditPage.php
@@ -1429,7 +1429,7 @@ END
                         $attribs = array( 'id' => 'wpTextbox1', 'name' => 'wpTextbox1', 'cols' => $cols, 'rows' => $rows, 'readonly' => 'readonly' );
                         $wgOut->addHtml( '<hr />' );
                         $wgOut->addWikiText( wfMsg( $first ? 'blockedoriginalsource' : 'blockededitsource', $this->mTitle->getPrefixedText() ) );
-                       $wgOut->addHtml( wfElement( 'textarea', $attribs, $source ) );
+                       $wgOut->addHtml( wfOpenElement( 'textarea', $attribs ) . htmlspecialchars( $source ) . wfCloseElement( 'textarea' ) );
                 }
         }
author	Rob Church <robchurch@users.mediawiki.org>
	Thu, 13 Jul 2006 10:06:24 +0000 (10:06 +0000)
committer	Rob Church <robchurch@users.mediawiki.org>
	Thu, 13 Jul 2006 10:06:24 +0000 (10:06 +0000)