summaryrefslogtreecommitdiff
path: root/app/Helper
diff options
context:
space:
mode:
Diffstat (limited to 'app/Helper')
-rw-r--r--app/Helper/FormHelper.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/app/Helper/FormHelper.php b/app/Helper/FormHelper.php
index c6948a22..d933b2f6 100644
--- a/app/Helper/FormHelper.php
+++ b/app/Helper/FormHelper.php
@@ -232,7 +232,7 @@ class FormHelper extends Base
}
$html = '<div class="js-text-editor" data-params=\''.json_encode($params, JSON_HEX_APOS).'\'>';
- $html .= '<script type="text/template">'.(isset($values[$name]) ? $values[$name] : '').'</script>';
+ $html .= '<script type="text/template">'.(isset($values[$name]) ? htmlspecialchars($values[$name], ENT_QUOTES, 'UTF-8', true) : '').'</script>';
$html .= '</div>';
$html .= $this->errorList($errors, $name);