From f77866969496b9337a804f3ca44ec04a7a91f4af Mon Sep 17 00:00:00 2001
From: garvinhicking <garvinhicking>
Date: Fri, 13 May 2005 17:19:00 +0000
Subject: [PATCH] one more htmlspecialchar()ing neccessary

---
 include/functions_comments.inc.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/functions_comments.inc.php b/include/functions_comments.inc.php
index 9869730..027f956 100644
--- a/include/functions_comments.inc.php
+++ b/include/functions_comments.inc.php
@@ -55,7 +55,7 @@ function serendipity_displayCommentForm($id, $url = '', $comments = NULL, $data
         'commentform_remember'       => isset($data['remember'])  ? 'checked="checked"'                   : (isset($serendipity['COOKIE']['remember']) ? 'checked="checked"' : ''),
         'commentform_replyTo'        => serendipity_generateCommentList($id, $comments, ((isset($data['replyTo']) && ($data['replyTo'])) ? $data['replyTo'] : 0)),
         'commentform_subscribe'      => isset($data['subscribe']) ? 'checked="checked"' : '',
-        'commentform_data'           => isset($data['comment'])   ? $data['comment'] : '',
+        'commentform_data'           => isset($data['comment'])   ? htmlspecialchars($data['comment']) : '',
         'is_commentform_showToolbar' => $showToolbar,
         'is_allowSubscriptions'      => $serendipity['allowSubscriptions'],
         'is_moderate_comments'       => $moderate_comments,
-- 
2.39.5