Harden XSS escaping

This could lead to XSS if the html attribute values weren't quoted with
double quotes. By default htmlentities only encodes double quotes and
not single quotes. If the quotes are ever changed this could lead to
exploitable XSS.

Signed-off-by: Florian Pritz <bluewind@xinu.at>

0 files changed, 0 insertions, 0 deletions