diff options
| author | Tom Needham <needham.thomas@gmail.com> | 2012-06-07 17:43:26 +0000 |
|---|---|---|
| committer | Tom Needham <needham.thomas@gmail.com> | 2012-06-07 17:43:26 +0000 |
| commit | 1f409ec524c86570f8d4755f95789e1c0f149190 (patch) | |
| tree | 51eb50fc0779472968361c11b1db978417840c90 /settings | |
| parent | c2f557f1dd89b2ca5a612d7cbf7ab940ea8d1b68 (diff) | |
| download | nextcloud-server-1f409ec524c86570f8d4755f95789e1c0f149190.tar.gz nextcloud-server-1f409ec524c86570f8d4755f95789e1c0f149190.zip | |
Protect the help page
Diffstat (limited to 'settings')
| -rw-r--r-- | settings/templates/help.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/settings/templates/help.php b/settings/templates/help.php index a53ec76d681..cf61207e601 100644 --- a/settings/templates/help.php +++ b/settings/templates/help.php @@ -26,9 +26,9 @@ <?php foreach($_["kbe"] as $kb): ?> <div class="helpblock"> <?php if($kb["preview1"] <> "") { echo('<img class="preview" src="'.$kb["preview1"].'" />'); } ?> - <?php if($kb['detailpage']<>'') echo('<p><a target="_blank" href="'.$kb['detailpage'].'"><strong>'.$kb["name"].'</strong></a></p>');?> - <p><?php echo $kb['description'];?></p> - <?php if($kb['answer']<>'') echo('<p><strong>'.$l->t('Answer').':</strong><p>'.$kb['answer'].'</p>');?> + <?php if($kb['detailpage']<>'') echo('<p><a target="_blank" href="'.$kb['detailpage'].'"><strong>'.htmlentities($kb["name"]).'</strong></a></p>');?> + <p><?php echo htmlentities($kb['description']);?></p> + <?php if($kb['answer']<>'') echo('<p><strong>'.$l->t('Answer').':</strong><p>'.htmlentities($kb['answer']).'</p>');?> </div> <?php endforeach; endif?> |