Skip to content

Commit

Permalink
Item13739: escape some chars in error message
Browse files Browse the repository at this point in the history
  • Loading branch information
@MichaelDaum
MichaelDaum committed Sep 22, 2015
1 parent e48d3e3 commit 84f4ba6
Showing 1 changed file with 7 additions and 1 deletion.
8 changes: 7 additions & 1 deletion core/lib/Foswiki/Users.pm
View file
Expand Up @@ -1030,7 +1030,13 @@ returns undef if no error

sub passwordError {
my ( $this, $cUID ) = @_;
return $this->_getMapping($cUID)->passwordError();

my $error = $this->_getMapping($cUID)->passwordError();
$error =~ s/&/&/g;
$error =~ s/</&lt;/g;
$error =~ s/>/&gt;/g;

return $error;
}

=begin TML
Expand Down

0 comments on commit 84f4ba6

Please sign in to comment.