diff options
author | JohnAlbin | 2013-08-18 07:37:32 (GMT) |
---|---|---|
committer | JohnAlbin | 2013-08-18 07:37:32 (GMT) |
commit | 958b522ddbf793d7e176e1d83ad81f77fca573ff (patch) | |
tree | a9539b1ede680c5ab2498e028ce3dca060d77bf5 | |
parent | 52a9b40c2a0cd6f5a6f0b4c921db813ea8ec1c17 (diff) |
Issue #754000: Breadcrumb separator XSS vulnerability
-rw-r--r-- | template.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/template.php b/template.php index 8f168f8..33e5c2f 100644 --- a/template.php +++ b/template.php @@ -56,7 +56,7 @@ function zen_breadcrumb($variables) { // Return the breadcrumb with separators. if (!empty($breadcrumb)) { - $breadcrumb_separator = theme_get_setting('zen_breadcrumb_separator'); + $breadcrumb_separator = filter_xss_admin(theme_get_setting('zen_breadcrumb_separator')); $trailing_separator = $title = ''; if (theme_get_setting('zen_breadcrumb_title')) { $item = menu_get_item(); |