htmlspecialchars [MF REL1_4]

author River Tarnell <kateturner@users.mediawiki.org>

Wed, 8 Dec 2004 11:02:08 +0000 (11:02 +0000)

committer River Tarnell <kateturner@users.mediawiki.org>

Wed, 8 Dec 2004 11:02:08 +0000 (11:02 +0000)
author River Tarnell <kateturner@users.mediawiki.org>
Wed, 8 Dec 2004 11:02:08 +0000 (11:02 +0000)
committer River Tarnell <kateturner@users.mediawiki.org>
Wed, 8 Dec 2004 11:02:08 +0000 (11:02 +0000)
diff --git a/includes/ImageGallery.php b/includes/ImageGallery.php

index 6c778af..33be587 100644 (file)
--- a/includes/ImageGallery.php
+++ b/includes/ImageGallery.php
@@ -93,7 +93,7 @@ class ImageGallery
                         // Not an image. Just print the name and skip.
                         if ( $nt->getNamespace() != NS_IMAGE ) {
                                 $s .= '<td valign="top" width="150px" style="background-color:#F0F0F0;">' .
-                                       $nt->getText() . '</td>' .  (($i%4==3) ? "</tr>\n" : '');
+                                       htmlspecialchars( $nt->getText() ) . '</td>' .  (($i%4==3) ? "</tr>\n" : '');
                                 $i++;
  
                                 continue;
author	River Tarnell <kateturner@users.mediawiki.org>
	Wed, 8 Dec 2004 11:02:08 +0000 (11:02 +0000)
committer	River Tarnell <kateturner@users.mediawiki.org>
	Wed, 8 Dec 2004 11:02:08 +0000 (11:02 +0000)