Run all variables containing user-entered text through p::clean()

author: Bharat Mediratta <bharat@menalto.com> 2009-05-31 01:06:51 -0700
committer: Bharat Mediratta <bharat@menalto.com> 2009-05-31 01:06:51 -0700
commit: 2e16c9557c8a1641b3dd5826492f826a1a96bfb0 (patch)
tree: d7891e2b90bf4c17e497a7d4d632d5b669f99fc8 /themes/default/views/header.html.php
parent: 712fdb55458f5d89fb5e5e4f4f99b8e1c130ba60 (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/themes/default/views/header.html.php b/themes/default/views/header.html.php
index 9d058e35..1e70b7ac 100644
--- a/themes/default/views/header.html.php
+++ b/themes/default/views/header.html.php
@@ -17,8 +17,12 @@
 <? if (!empty($parents)): ?>
 <ul class="gBreadcrumbs">
   <? foreach ($parents as $parent): ?>
-  <li><a href="<?= url::site("albums/{$parent->id}?show=$item->id") ?>"><?= $parent->title ?></a></li>
+  <li>
+    <a href="<?= url::site("albums/{$parent->id}?show=$item->id") ?>">
+      <?= p::clean($parent->title) ?>
+    </a>
+  </li>
   <? endforeach ?>
-  <li class="active"><?= $item->title ?></li>
+  <li class="active"><?= p::clean($item->title) ?></li>
 </ul>
 <? endif ?>
author	Bharat Mediratta <bharat@menalto.com>	2009-05-31 01:06:51 -0700
committer	Bharat Mediratta <bharat@menalto.com>	2009-05-31 01:06:51 -0700
commit	2e16c9557c8a1641b3dd5826492f826a1a96bfb0 (patch)
tree	d7891e2b90bf4c17e497a7d4d632d5b669f99fc8 /themes/default/views/header.html.php
parent	712fdb55458f5d89fb5e5e4f4f99b8e1c130ba60 (diff)