summaryrefslogtreecommitdiff
path: root/pages/wot/1.php
diff options
context:
space:
mode:
authorBenny Baumann <BenBE@geshi.org>2014-04-30 20:13:28 +0200
committerBenny Baumann <BenBE@geshi.org>2014-04-30 20:18:56 +0200
commit7f02d479140d2c47e9359191ed2a7d687c6b9a33 (patch)
treefd72a22729f6fb9575396a3a4443e2c0f76c3991 /pages/wot/1.php
parent2801b166026e48e2133ac5e8ba68f3d699c4dbd2 (diff)
downloadcacert-devel-7f02d479140d2c47e9359191ed2a7d687c6b9a33.tar.gz
cacert-devel-7f02d479140d2c47e9359191ed2a7d687c6b9a33.tar.xz
cacert-devel-7f02d479140d2c47e9359191ed2a7d687c6b9a33.zip
bug 1138: And yet another bunch of escaping
Diffstat (limited to 'pages/wot/1.php')
-rw-r--r--pages/wot/1.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/pages/wot/1.php b/pages/wot/1.php
index 99c2b9f..d6e298d 100644
--- a/pages/wot/1.php
+++ b/pages/wot/1.php
@@ -108,9 +108,9 @@
</tr>
<? while($row = mysql_fetch_assoc($list)) { ?>
<tr>
- <td class="DataTD" width="100"><nobr><?=$row['fname']?> <?=substr($row['lname'], 0, 1)?></nobr></td>
+ <td class="DataTD" width="100"><nobr><?=sanitizeHTML($row['fname'])?> <?=substr($row['lname'], 0, 1)?>.</nobr></td>
<td class="DataTD"><?=maxpoints($row['id'])?></td>
- <td class="DataTD"><?=$row['contactinfo']?></td>
+ <td class="DataTD"><?=sanitizeHTML($row['contactinfo'])?></td>
<td class="DataTD"><a href="wot.php?id=9&amp;userid=<?=intval($row['id'])?>"><?=_("Email Me")?></a></td>
<td class="DataTD"><?=$row['assurer']?_("Yes"):("<font color=\"#ff0000\">"._("Not yet!")."</font>")?></td>