diff options
| author | CiaranG <ciaran@ciarang.com> | 2008-08-23 01:25:34 -0400 |
|---|---|---|
| committer | CiaranG <ciaran@ciarang.com> | 2008-08-23 01:25:34 -0400 |
| commit | 6593092bfd08efa9fe5dbd83a85a4fe1cac2b936 (patch) | |
| tree | fe128051216445a01ba50593aa13e26d8247ef6e /lib | |
| parent | 1e681833777fac7af5d5af5a612fa4169bf7c07e (diff) | |
Escape profile url in xmpp in case fancy urls off (Ticket #521)
darcs-hash:20080823052534-f6e2c-aa452a8c2c6ee33399f4079d0bf2224847e1450a.gz
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/jabber.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/jabber.php b/lib/jabber.php index 586cdec7e..415bb45d7 100644 --- a/lib/jabber.php +++ b/lib/jabber.php @@ -123,7 +123,7 @@ function jabber_format_entry($profile, $notice) { $entry = "\n<entry xmlns='http://www.w3.org/2005/Atom'>\n"; $entry .= "<source>\n"; $entry .= "<title>" . $profile->nickname . " - " . common_config('site', 'name') . "</title>\n"; - $entry .= "<link href='" . $profile->profileurl . "'/>\n"; + $entry .= "<link href='" . htmlspecialchars($profile->profileurl) . "'/>\n"; $entry .= "<link rel='self' type='application/rss+xml' href='" . common_local_url('userrss', array('nickname' => $profile->nickname)) . "'/>\n"; $entry .= "<author><name>" . $profile->nickname . "</name></author>\n"; $entry .= "<icon>" . common_profile_avatar_url($profile, AVATAR_PROFILE_SIZE) . "</icon>\n"; |