fix quote

diff --git a/docs/NEWS b/docs/NEWS
index ea1f9bebdc9aeed3eb6a5a3b3367ca0751698c67..628bfdcaeb4f46726e7592b897894009b6da226d 100644 (file)
--- a/docs/NEWS
+++ b/docs/NEWS
@@ -3,6 +3,9 @@
 Version 1.0.1 ()
 ------------------------------------------------------------------------
    
+   * Chorizo Security Checks: Fixed possible browser-dependant attribute 
+     injection in the templatechooser-Plugin (garvinhicking)
+
    * Fixed icelandic language bug preventing upgrade (garvinhicking)
 
 Version 1.0 (June 15th, 2006)

diff --git a/include/functions_permalinks.inc.php b/include/functions_permalinks.inc.php
index de575a870f2bd6878a7b4206803bdf2c9f9f1cd6..b97dd052d4ae626f304a8e448df913ae133e8e5b 100644 (file)
--- a/include/functions_permalinks.inc.php
+++ b/include/functions_permalinks.inc.php
@@ -702,13 +702,15 @@ function serendipity_currentURL() {
             '"',
             "'",
             '<',
-            '>'
+            '>',
+            '`',
         ),
 
         array(
             '',
             '',
             '',
+            '',
             ''
         ),
 

diff --git a/serendipity_config.inc.php b/serendipity_config.inc.php
index 4f2566a13fb3746600ffd759cb6d1b94d41a8686..db46b6864aef7013a1fad8dbb13d35fa53e600b0 100644 (file)
--- a/serendipity_config.inc.php
+++ b/serendipity_config.inc.php
@@ -21,7 +21,7 @@ if (IS_installed === true && !defined('IN_serendipity')) {
 include_once(S9Y_INCLUDE_PATH . 'include/compat.inc.php');
 
 // The version string
-$serendipity['version']         = '1.0';
+$serendipity['version']         = '1.0.1';
 
 // Name of folder for the default theme
 $serendipity['defaultTemplate'] = 'carl_contest';