Add warning about sanitization

diff --git a/lib/template.php b/lib/template.php
index 398f9de0655f8520064576895667f5eec8e699d3..434c1e9e9901b7dc729773956e6f7bc7a7c8e46b 100644 (file)
--- a/lib/template.php
+++ b/lib/template.php
@@ -519,12 +519,13 @@ class OC_Template{
        /**
                * @brief Print a fatal error page and terminates the script
                * @param string $error The error message to show
-               * @param string $hint An option hint message
+               * @param string $hint An optional hint message 
+               * Warning: All data passed to $hint needs to get sanitized using OC_Util::sanitizeHTML
                */
        public static function printErrorPage( $error_msg, $hint = '' ) {
                $content = new OC_Template( '', 'error', 'error' );
                $errors = array(array('error' => $error_msg, 'hint' => $hint));
-               $content->assign( 'errors', $errors, false );
+               $content->assign( 'errors', $errors );
                $content->printPage();
                die();
        }