From dd8ef4d3f52b0d8615c1bb5fa75102e073c2c32e Mon Sep 17 00:00:00 2001 From: "Edward Z. Yang" Date: Fri, 18 Jan 2008 07:04:30 +0000 Subject: [PATCH] Fix double-encoded quotes. git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1508 48356398-32a2-884e-a903-53898d9a118a --- plugins/phorum/Changelog | 3 +++ plugins/phorum/htmlpurifier.php | 2 +- 2 files changed, 4 insertions(+), 1 deletion(-) diff --git a/plugins/phorum/Changelog b/plugins/phorum/Changelog index b0e00725..9420f6dd 100644 --- a/plugins/phorum/Changelog +++ b/plugins/phorum/Changelog @@ -9,6 +9,9 @@ Changelog HTMLPurifier : Phorum Mod . Internal change ========================== +Version 3.0.0.1 for Phorum 5.2, unknown release date +- Fixed double encoded quotes + Version 3.0.0 for Phorum 5.2, released January 12, 2008 # WYSIWYG and suppress_message options are now configurable via web interface. diff --git a/plugins/phorum/htmlpurifier.php b/plugins/phorum/htmlpurifier.php index 512280bd..26d78a1d 100644 --- a/plugins/phorum/htmlpurifier.php +++ b/plugins/phorum/htmlpurifier.php @@ -88,7 +88,7 @@ function phorum_htmlpurifier_format($data) $body = $message['body']; // order is important $body = str_replace("\n", "\n", $body); - $body = str_replace(array('<','>','&'), array('<','>','&'), $body); + $body = str_replace(array('<','>','&', '"'), array('<','>','&','"'), $body); if (!$message_id && defined('PHORUM_CONTROL_CENTER')) { // we're in control.php, so it was double-escaped $body = str_replace(array('<','>','&', '"'), array('<','>','&','"'), $body);