close a possible XSS hole
[ikiwiki.git] / templates / recentchanges.tmpl
index 726e52f6492051e6c7092fa8942c25982c2fd540..f927cf62f4eb9549442f161dd75e4941e0d75764 100644 (file)
@@ -30,7 +30,7 @@
 <TMPL_LOOP NAME="CHANGELOG">
        <!-- <TMPL_VAR NAME="REV"> -->
        <tr class="changeinfo">
-               <td class="changeinfo"><TMPL_VAR NAME="USER"></td>
+               <td class="changeinfo"><TMPL_VAR NAME="USER" ESCAPE="HTML"></td>
                <td class="changetime"><TMPL_VAR NAME="WHEN"></td>
                <td class="changeinfo">
                <TMPL_LOOP NAME="PAGES">