From: Lukas Reschke <lukas@statuscode.ch>
Date: Sun, 10 Jun 2012 22:23:35 +0000 (+0200)
Subject: Sanitize user input
X-Git-Tag: v4.5.0beta1~74^2~421^2~33
X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=f8d2e21c66e68d1786f203a8eb7e8cb38b4e670e;p=nextcloud-server.git

Sanitize user input
---

diff --git a/apps/user_openid/settings.php b/apps/user_openid/settings.php
index 921fa371dde..062322f6fe4 100644
--- a/apps/user_openid/settings.php
+++ b/apps/user_openid/settings.php
@@ -2,7 +2,7 @@
 
 $tmpl = new OCP\Template( 'user_openid', 'settings');
 $identity=OCP\Config::getUserValue(OCP\USER::getUser(),'user_openid','identity','');
-$tmpl->assign('identity',$identity);
+$tmpl->assign('identity',htmlentities($identity));
 
 OCP\Util::addscript('user_openid','settings');