diff options
author | Frederic Guillot <fred@kanboard.net> | 2016-08-29 21:16:08 -0400 |
---|---|---|
committer | Frederic Guillot <fred@kanboard.net> | 2016-08-29 21:16:08 -0400 |
commit | a3819c33d222b61f2a008f23ff67c7a14797c946 (patch) | |
tree | 22834344844e9c3ee6fa81d7d51af45bd9c792b7 | |
parent | 08bdb708e7698c21b0e6fc9f21d19996fc3d593d (diff) |
Add missing HTML escaping for textarea
-rw-r--r-- | app/Helper/FormHelper.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/app/Helper/FormHelper.php b/app/Helper/FormHelper.php index 0bb94d39..eca1f317 100644 --- a/app/Helper/FormHelper.php +++ b/app/Helper/FormHelper.php @@ -174,7 +174,7 @@ class FormHelper extends Base $html = '<textarea name="'.$name.'" id="form-'.$name.'" class="'.$class.'" '; $html .= implode(' ', $attributes).'>'; - $html .= isset($values->$name) ? $this->helper->text->e($values->$name) : isset($values[$name]) ? $values[$name] : ''; + $html .= isset($values[$name]) ? $this->helper->text->e($values[$name]) : ''; $html .= '</textarea>'; $html .= $this->errorList($errors, $name); |