summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJohnAlbin2013-08-18 07:37:32 (GMT)
committerJohnAlbin2013-08-18 07:37:32 (GMT)
commit958b522ddbf793d7e176e1d83ad81f77fca573ff (patch)
treea9539b1ede680c5ab2498e028ce3dca060d77bf5
parent52a9b40c2a0cd6f5a6f0b4c921db813ea8ec1c17 (diff)
Issue #754000: Breadcrumb separator XSS vulnerability
-rw-r--r--template.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/template.php b/template.php
index 8f168f8..33e5c2f 100644
--- a/template.php
+++ b/template.php
@@ -56,7 +56,7 @@ function zen_breadcrumb($variables) {
// Return the breadcrumb with separators.
if (!empty($breadcrumb)) {
- $breadcrumb_separator = theme_get_setting('zen_breadcrumb_separator');
+ $breadcrumb_separator = filter_xss_admin(theme_get_setting('zen_breadcrumb_separator'));
$trailing_separator = $title = '';
if (theme_get_setting('zen_breadcrumb_title')) {
$item = menu_get_item();