Commit f8c85792 authored by Clare Lenihan's avatar Clare Lenihan Committed by Clare Lenihan
Browse files

changed from using htmlspecialchars to escaping in smarty

parent ae6a47ee
...@@ -15,7 +15,7 @@ ...@@ -15,7 +15,7 @@
{/if} {/if}
<td> <td>
<a href="{$WWWROOT}interaction/forum/topic.php?id={$topic->id|escape}">{$topic->subject|escape}</a> <a href="{$WWWROOT}interaction/forum/topic.php?id={$topic->id|escape}">{$topic->subject|escape}</a>
<div>{$topic->body}</div> <div>{$topic->body|escape}</div>
</td> </td>
<td> <td>
<a href="{$WWWROOT}user/view.php?id={$topic->poster}" <a href="{$WWWROOT}user/view.php?id={$topic->poster}"
......
...@@ -293,7 +293,6 @@ function setup_topics(&$topics) { ...@@ -293,7 +293,6 @@ function setup_topics(&$topics) {
if ($more) { if ($more) {
$topic->body .= '...'; $topic->body .= '...';
} }
$topic->body = htmlspecialchars($topic->body);
$topic->lastposttime = relative_date(get_string('strftimerecentrelative', 'interaction.forum'), get_string('strftimerecent'), $topic->lastposttime); $topic->lastposttime = relative_date(get_string('strftimerecentrelative', 'interaction.forum'), get_string('strftimerecent'), $topic->lastposttime);
} }
} }
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment