html/messages.tmpl: Fix XSS vulneralibility
authorFrank Lichtenheld <frank@lichtenheld.de>
Tue, 18 Sep 2007 21:11:57 +0000 (23:11 +0200)
committerFrank Lichtenheld <frank@lichtenheld.de>
Tue, 18 Sep 2007 21:11:57 +0000 (23:11 +0200)
commitbbfd15cf954f1041490d6d299d8ed5b581d431ba
tree003ae8250aeca4f6305c0d412a60631bd5477205
parent86a2d10221398bd687f01ece9b52ad3b18ffb969
html/messages.tmpl: Fix XSS vulneralibility

Noted by Moritz Naumann <security -at- moritz-naumann com>

Since error messages can contain user content, escape them
for display.
templates/html/messages.tmpl