diff options
| author | Tom Needham <needham.thomas@gmail.com> | 2012-05-13 20:19:25 +0000 |
|---|---|---|
| committer | Tom Needham <needham.thomas@gmail.com> | 2012-05-13 20:19:25 +0000 |
| commit | 2e2eccc8792728a468133bd43af74fffbcdef57b (patch) | |
| tree | df461026af09a17513d6780f324381a720ea0a8e | |
| parent | 21dfe9dc5e5b2fed3fb9f135136c73efa9ce4a8d (diff) | |
| parent | 198b73ddd11c722e199cb3008fa07751be66c488 (diff) | |
| download | nextcloud-server-2e2eccc8792728a468133bd43af74fffbcdef57b.tar.gz nextcloud-server-2e2eccc8792728a468133bd43af74fffbcdef57b.zip | |
Merge branch 'master' of gitorious.org:owncloud/owncloud
| -rw-r--r-- | core/templates/layout.user.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/core/templates/layout.user.php b/core/templates/layout.user.php index b832ac2636f..e9d105ed043 100644 --- a/core/templates/layout.user.php +++ b/core/templates/layout.user.php @@ -30,7 +30,7 @@ <header><div id="header"> <a href="<?php echo link_to('', 'index.php'); ?>" title="" id="owncloud"><img class="svg" src="<?php echo image_path('', 'logo-wide.svg'); ?>" alt="ownCloud" /></a> <form class="searchbox" action="#" method="post"> - <input id="searchbox" class="svg" type="search" name="query" value="<?php if(isset($_POST['query'])){echo $_POST['query'];};?>" autocomplete="off" /> + <input id="searchbox" class="svg" type="search" name="query" value="<?php if(isset($_POST['query'])){echo htmlentities($_POST['query']);};?>" autocomplete="off" /> </form> <a id="logout" href="<?php echo link_to('', 'index.php'); ?>?logout=true"><img class="svg" alt="<?php echo $l->t('Log out');?>" title="<?php echo $l->t('Log out');?>" src="<?php echo image_path('', 'actions/logout.svg'); ?>" /></a> </div></header> |