projects / project/print.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw
SA-CONTRIB-2009-052: remove multiple XSS vulnerabilities
[project/print.git] / print_pdf / print_pdf.pages.inc
diff --git a/print_pdf/print_pdf.pages.inc b/print_pdf/print_pdf.pages.inc
index 6be7142..c804e3d 100644 (file)
--- a/print_pdf/print_pdf.pages.inc
+++ b/print_pdf/print_pdf.pages.inc
@@ -207,9 +207,9 @@ function _print_pdf_tcpdf($print, $html, $filename) {
   }
 
   $font = Array(
-    variable_get('print_pdf_font_family', PRINT_PDF_FONT_FAMILY_DEFAULT),
+    check_plain(variable_get('print_pdf_font_family', PRINT_PDF_FONT_FAMILY_DEFAULT)),
     '',
-    variable_get('print_pdf_font_size', PRINT_PDF_FONT_SIZE_DEFAULT),
+    check_plain(variable_get('print_pdf_font_size', PRINT_PDF_FONT_SIZE_DEFAULT)),
   );
   $orientation = drupal_strtoupper($print_pdf_page_orientation[0]);
 
Cache Last Updated: Wed Jun 19 16:51:06 2013 GMT
For more information about this repository, visit the project page at http://drupal.org/project/print