From d8449420800d37acec6bd1c775aec5dc449c71f5 Mon Sep 17 00:00:00 2001
From: Earl Miles <merlin@logrus.com>
Date: Wed, 18 Jan 2012 11:49:04 -0800
Subject: [PATCH] Sanitize region names in admin view.

---
 .../panels_renderer_editor.class.php               |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/plugins/display_renderers/panels_renderer_editor.class.php b/plugins/display_renderers/panels_renderer_editor.class.php
index ca1ca84..4fee7e3 100644
--- a/plugins/display_renderers/panels_renderer_editor.class.php
+++ b/plugins/display_renderers/panels_renderer_editor.class.php
@@ -84,7 +84,7 @@ class panels_renderer_editor extends panels_renderer_standard {
 
     $output = "<div class='panel-region' id='panel-region-$region_id'>";
     $output .= $panel_buttons;
-    $output .= "<h2 class='label'>" . $this->plugins['layout']['regions'][$region_id] . "</h2>";
+    $output .= "<h2 class='label'>" . check_plain($this->plugins['layout']['regions'][$region_id]) . "</h2>";
     $output .= $content;
     $output .= "</div>";
 
-- 
1.7.4.1