X-Git-Url: https://sipb.mit.edu/gitweb.cgi/ikiwiki.git/blobdiff_plain/92065444d982a443d3862f9ce5094bd32faffb85..f7f3b0bb7d91c74f67023e970cee71ad2ea260da:/IkiWiki/CGI.pm

diff --git a/IkiWiki/CGI.pm b/IkiWiki/CGI.pm
index 6e1efbd69..eb89752ec 100644
--- a/IkiWiki/CGI.pm
+++ b/IkiWiki/CGI.pm
@@ -77,11 +77,12 @@ sub cgi_recentchanges ($) { #{{{
 	memoize("htmllink");
 
 	eval q{use Time::Duration};
+	eval q{use CGI 'escapeHTML'};
 
 	my $changelog=[rcs_recentchanges(100)];
 	foreach my $change (@$changelog) {
 		$change->{when} = concise(ago($change->{when}));
-		$change->{user} = htmllink("", "", $change->{user}, 1);
+		$change->{user} = htmllink("", "", escapeHTML($change->{user}), 1);
 		$change->{pages} = [
 			map {
 				$_->{link} = htmllink("", "", $_->{page}, 1);