summaryrefslogtreecommitdiff
path: root/modules/gallery/views/admin_advanced_settings.html.php
diff options
context:
space:
mode:
authorAndy Staudacher <andy.st@gmail.com>2009-08-31 21:51:57 -0700
committerAndy Staudacher <andy.st@gmail.com>2009-08-31 21:51:57 -0700
commit2bc73e2e36fefc3c1ee1b8e97e686c6729e58dcb (patch)
treec511db2684ea957572a1d27caf49a08963ef8484 /modules/gallery/views/admin_advanced_settings.html.php
parent8c3a2db3803ccaa3572f0bf061ca7faf62f13fca (diff)
Fix XSS vectors in HTML attributes (mostly t() calls)
Diffstat (limited to 'modules/gallery/views/admin_advanced_settings.html.php')
-rw-r--r--modules/gallery/views/admin_advanced_settings.html.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/gallery/views/admin_advanced_settings.html.php b/modules/gallery/views/admin_advanced_settings.html.php
index 4235e8f8..c3595da5 100644
--- a/modules/gallery/views/admin_advanced_settings.html.php
+++ b/modules/gallery/views/admin_advanced_settings.html.php
@@ -24,7 +24,7 @@
<td>
<a href="<?= url::site("admin/advanced_settings/edit/$var->module_name/" . html::clean($var->name)) ?>"
class="gDialogLink"
- title="<?= t("Edit %var (%module_name)", array("var" => $var->name, "module_name" => $var->module_name)) ?>">
+ title="<?= t("Edit %var (%module_name)", array("var" => $var->name, "module_name" => $var->module_name))->for_html_attr() ?>">
<? if ($var->value): ?>
<?= html::clean($var->value) ?>
<? else: ?>
generated by cgit v1.2.3 (git 2.46.0) at 2025-10-13 07:14:30 +0000