* Only encode "'<>& for now; will change back once the UTF8 madness

author Don Armstrong <don@archimedes>

Thu, 8 Mar 2007 20:08:01 +0000 (12:08 -0800)

committer Don Armstrong <don@archimedes>

Thu, 8 Mar 2007 20:08:01 +0000 (12:08 -0800)
author Don Armstrong <don@archimedes>
Thu, 8 Mar 2007 20:08:01 +0000 (12:08 -0800)
committer Don Armstrong <don@archimedes>
Thu, 8 Mar 2007 20:08:01 +0000 (12:08 -0800)
diff --git a/Debbugs/CGI.pm b/Debbugs/CGI.pm

index 0fd19af97670d145bd6895b8782084faeab78346..73b5bb6b56f4825cd2a58ff007e6fdd419db758c 100644 (file)
--- a/Debbugs/CGI.pm
+++ b/Debbugs/CGI.pm
@@ -154,7 +154,7 @@ Escapes html entities by calling HTML::Entities::encode_entities;
  sub html_escape{
       my ($string) = @_;
  
-     return HTML::Entities::encode_entities($string)
+     return HTML::Entities::encode_entities($string,q(<>&"'));
  }
  
  =head2 cgi_parameters
author	Don Armstrong <don@archimedes>
	Thu, 8 Mar 2007 20:08:01 +0000 (12:08 -0800)
committer	Don Armstrong <don@archimedes>
	Thu, 8 Mar 2007 20:08:01 +0000 (12:08 -0800)