diff options
| author | Robert Treat | 2015-02-15 17:02:22 +0000 |
|---|---|---|
| committer | Robert Treat | 2017-10-30 22:31:50 +0000 |
| commit | b01124a3e533913ed4f460c480da8d6a280df1b1 (patch) | |
| tree | 32cac807265213e7d5857cbe6a4e09f6f9eb8546 | |
| parent | 91b592e1751beb9705470a6f77d9ea70cb56deda (diff) | |
htmlescape column comments. per suggestion from github user nboutelier
| -rw-r--r-- | classes/Misc.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/classes/Misc.php b/classes/Misc.php index 96a49534..1b34b14e 100644 --- a/classes/Misc.php +++ b/classes/Misc.php @@ -1989,7 +1989,7 @@ echo "<td class='comment_cell'>"; $val = value($column['field'], $tabledata->fields); if (!is_null($val)) { - echo $val; + echo htmlentities($val); } echo "</td>"; break; |