diff options
| author | Zach Copley <zach@status.net> | 2010-03-12 01:12:30 +0000 |
|---|---|---|
| committer | Zach Copley <zach@status.net> | 2010-03-12 01:12:30 +0000 |
| commit | 78f0d6bbd21ed84733e960201c4652e69c565450 (patch) | |
| tree | 22cbb14401301be9a2cba6927c21aee3c4afaab0 /lib/apiaction.php | |
| parent | 7cdcb89dc9d8dcc04848928c5b765f99566d2a4d (diff) | |
Scrub all atom output with common_xml_safe_str()
Diffstat (limited to 'lib/apiaction.php')
| -rw-r--r-- | lib/apiaction.php | 12 |
1 files changed, 8 insertions, 4 deletions
diff --git a/lib/apiaction.php b/lib/apiaction.php index 73777f4e8..cef5d1c1e 100644 --- a/lib/apiaction.php +++ b/lib/apiaction.php @@ -743,8 +743,12 @@ class ApiAction extends Action function showTwitterAtomEntry($entry) { $this->elementStart('entry'); - $this->element('title', null, $entry['title']); - $this->element('content', array('type' => 'html'), $entry['content']); + $this->element('title', null, common_xml_safe_str($entry['title'])); + $this->element( + 'content', + array('type' => 'html'), + common_xml_safe_str($entry['content']) + ); $this->element('id', null, $entry['id']); $this->element('published', null, $entry['published']); $this->element('updated', null, $entry['updated']); @@ -859,7 +863,7 @@ class ApiAction extends Action $this->initDocument('atom'); - $this->element('title', null, $title); + $this->element('title', null, common_xml_safe_str($title)); $this->element('id', null, $id); $this->element('link', array('href' => $link, 'rel' => 'alternate', 'type' => 'text/html'), null); @@ -869,7 +873,7 @@ class ApiAction extends Action } $this->element('updated', null, common_date_iso8601('now')); - $this->element('subtitle', null, $subtitle); + $this->element('subtitle', null, common_xml_safe_str($subtitle)); if (is_array($group)) { foreach ($group as $g) { |