From 57d12c69a87bbc2057f5f513f425e8b0d6588b87 Mon Sep 17 00:00:00 2001
From: shadlaws <shad@shadlaws.com>
Date: Fri, 6 Sep 2013 08:36:09 +0200
Subject: #2083 - Sanitize data from module.info files.

---
 modules/gallery/helpers/module.php | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'modules')

diff --git a/modules/gallery/helpers/module.php b/modules/gallery/helpers/module.php
index 1b6c8d1a..0e190e46 100644
--- a/modules/gallery/helpers/module.php
+++ b/modules/gallery/helpers/module.php
@@ -93,6 +93,10 @@ class module_Core {
         $module_name = basename(dirname($file));
         $modules->$module_name =
           new ArrayObject(parse_ini_file($file), ArrayObject::ARRAY_AS_PROPS);
+        foreach ($modules->$module_name as &$value) {
+          $value = html::purify($value);
+        }
+
         $m =& $modules->$module_name;
         $m->installed = module::is_installed($module_name);
         $m->active = module::is_active($module_name);
-- 
cgit v1.2.3