Drupal
/
drupal
mirror of https://git.drupalcode.org/project/drupal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

#192201 by myself: remove overly secure check_markup() and check_plain() usage which results in double escaped output

6.x
Gábor Hojtsy 2007-11-20 11:39:48 +00:00
parent 64ff0984a9
commit 1c02e47e69
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
modules/profile/profile.module
View File

@ -312,8 +312,8 @@ function profile_view_profile(&$user) {
$user->content[$field->category][$field->name] = array( $user->content[$field->category][$field->name] = array(
'#type' => 'user_profile_item', '#type' => 'user_profile_item',
'#title' => check_plain($title), '#title' => $title,
'#value' => check_markup($value), '#value' => $value,
'#weight' => $field->weight, '#weight' => $field->weight,
'#attributes' => array('class' => 'profile-'. $field->name), '#attributes' => array('class' => 'profile-'. $field->name),
); );