Issue #1145700 by jbrown, mr.baileys, joachim: harden link display on dblogoverview...
authorGábor Hojtsy
Fri, 27 Apr 2012 13:39:25 +0000 (15:39 +0200)
committerGábor Hojtsy
Fri, 27 Apr 2012 13:39:25 +0000 (15:39 +0200)
modules/dblog/dblog.admin.inc

index ee577a4..853a2ce 100644 (file)
@@ -79,7 +79,7 @@ function dblog_overview() {
         format_date($dblog->timestamp, 'small'),
         l(truncate_utf8(_dblog_format_message($dblog), 56, TRUE, TRUE), 'admin/reports/event/'. $dblog->wid, array('html' => TRUE)),
         theme('username', $dblog),
-        $dblog->link,
+        filter_xss($dblog->link),
       ),
       // Attributes for tr
       'class' => "dblog-". preg_replace('/[^a-z]/i', '-', $dblog->type) .' '. $classes[$dblog->severity]