Run p::clean() on any variables that contain data entered by users.

author: Bharat Mediratta <bharat@menalto.com> 2009-05-31 00:11:48 -0700
committer: Bharat Mediratta <bharat@menalto.com> 2009-05-31 00:11:48 -0700
commit: 708f27f483d70660446ea2132b02cb7b39225f98 (patch)
tree: c1f6231ea024565be6c2a41ad092eea05b30d7fc /modules/info/views
parent: ad81861c331f60ec8c19ea11e47e2826660fa142 (diff)
1 files changed, 4 insertions, 4 deletions
diff --git a/modules/info/views/info_block.html.php b/modules/info/views/info_block.html.php
index 880d5d3e..db664894 100644
--- a/modules/info/views/info_block.html.php
+++ b/modules/info/views/info_block.html.php
@@ -3,18 +3,18 @@
   <tbody>
     <tr>
       <th><?= t("Title:") ?></th>
-      <td><?= $item->title; ?></td>
+      <td><?= p::clean($item->title) ?></td>
     </tr>
     <? if ($item->description): ?>
     <tr>
       <th><?= t("Description:") ?></th>
-      <td><?= $item->description; ?></td>
+      <td><?= p::clean($item->description) ?></td>
     </tr>
     <? endif ?>
     <? if ($item->id != 1): ?>
     <tr>
       <th><?= t("Name:") ?></th>
-      <td><?= $item->name; ?></td>
+      <td><?= p::clean($item->name) ?></td>
     </tr>
     <? endif ?>
     <? if ($item->captured): ?>
@@ -26,7 +26,7 @@
     <? if ($item->owner): ?>
     <tr>
       <th><?= t("Owner:") ?></th>
-      <td><a href="#"><?= $item->owner->name ?></a></td>
+      <td><a href="#"><?= p::clean($item->owner->name) ?></a></td>
     </tr>
     <? endif ?>
   </tbody>
author	Bharat Mediratta <bharat@menalto.com>	2009-05-31 00:11:48 -0700
committer	Bharat Mediratta <bharat@menalto.com>	2009-05-31 00:11:48 -0700
commit	708f27f483d70660446ea2132b02cb7b39225f98 (patch)
tree	c1f6231ea024565be6c2a41ad092eea05b30d7fc /modules/info/views
parent	ad81861c331f60ec8c19ea11e47e2826660fa142 (diff)