From: Lukas Reschke <lukas@statuscode.ch>
Date: Sun, 10 Jun 2012 21:16:59 +0000 (+0200)
Subject: Sanitzing user input
X-Git-Tag: v4.5.0beta1~74^2~421^2~36
X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=380aab470ff375a8f898b3b9b8375236130209d0;p=nextcloud-server.git

Sanitzing user input
---

diff --git a/apps/user_ldap/settings.php b/apps/user_ldap/settings.php
index 9c0620578be..f1a474ff27d 100644
--- a/apps/user_ldap/settings.php
+++ b/apps/user_ldap/settings.php
@@ -47,7 +47,7 @@ if ($_POST) {
 // fill template
 $tmpl = new OCP\Template( 'user_ldap', 'settings');
 foreach($params as $param){
-		$value = OCP\Config::getAppValue('user_ldap', $param,'');
+		$value = htmlentities(OCP\Config::getAppValue('user_ldap', $param,''));
 		$tmpl->assign($param, $value);
 }