bug-1390: added escaping wit htmlspecialchars function and encoding UTF-8bug-1390

author: INOPIAE <inopiae@cacert.org> 2015-07-22 20:43:26 +0200
committer: INOPIAE <inopiae@cacert.org> 2015-07-22 22:19:09 +0200
commit: c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19 (patch)
tree: 6b20250ed840ec25c1dfe327821bc004feec3f55
parent: acad82ef82f7e5464541d8c84558f50494e51217 (diff)
download: cacert-mgr-c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19.tar.gz
cacert-mgr-c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19.tar.xz
cacert-mgr-c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/manager/application/views/scripts/mail/read.phtml b/manager/application/views/scripts/mail/read.phtml
index ac6c183..21ac131 100644
--- a/manager/application/views/scripts/mail/read.phtml
+++ b/manager/application/views/scripts/mail/read.phtml
@@ -7,4 +7,4 @@ $this->headLink()->appendStylesheet('/css/mail.css');
 ?>
 <H1><?php print I18n::_('Read Mail'); ?></H1>
 <?php
-print nl2br(quoted_printable_decode($this->mail_body));
+print nl2br(htmlspecialchars(quoted_printable_decode($this->mail_body), ENT_QUOTES | ENT_SUBSTITUTE, 'UTF-8'));
author	INOPIAE <inopiae@cacert.org>	2015-07-22 20:43:26 +0200
committer	INOPIAE <inopiae@cacert.org>	2015-07-22 22:19:09 +0200
commit	c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19 (patch)
tree	6b20250ed840ec25c1dfe327821bc004feec3f55
parent	acad82ef82f7e5464541d8c84558f50494e51217 (diff)
download	cacert-mgr-c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19.tar.gz cacert-mgr-c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19.tar.xz cacert-mgr-c28a5e261f2ab696b1e3959ddfa3b44a79ff8a19.zip