From 9dfba1e70866fb2bb551678f6e04b8ddfd5467e1 Mon Sep 17 00:00:00 2001
From: Starla Insigna <hatkirby@fourisland.com>
Date: Fri, 2 Oct 2009 19:04:20 -0400
Subject: Fixed HTML Entites problem

When the poll escaping problem was fixed, a whole ton of other similar bugs were found which were also fixed here.

Fixes #115
---
 admin/newLink.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'admin/newLink.php')

diff --git a/admin/newLink.php b/admin/newLink.php
index 3f6b42c..90313bd 100644
--- a/admin/newLink.php
+++ b/admin/newLink.php
@@ -80,7 +80,7 @@ if (isset($_GET['submit']))
 		$template->add('TYPEDISABLED', ' readonly="readonly"');
 	}
 
-	$template->add('TITLEVALUE', $_POST['title']);
+	$template->add('TITLEVALUE', htmlentities($_POST['title']));
 	$template->add('URLVALUE', $_POST['url']);
 	$template->add(strtoupper($_POST['type']) . 'SELECTED', ' checked="checked"');
 } else {
-- 
cgit 1.4.1