aboutsummaryrefslogtreecommitdiff
path: root/lib/core-extensions/UserJS
diff options
context:
space:
mode:
Diffstat (limited to 'lib/core-extensions/UserJS')
-rw-r--r--lib/core-extensions/UserJS/extension.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/core-extensions/UserJS/extension.php b/lib/core-extensions/UserJS/extension.php
index a33114ec5..3b860029a 100644
--- a/lib/core-extensions/UserJS/extension.php
+++ b/lib/core-extensions/UserJS/extension.php
@@ -22,13 +22,13 @@ final class UserJSExtension extends Minz_Extension {
$this->registerTranslates();
if (Minz_Request::isPost()) {
- $js_rules = html_entity_decode(Minz_Request::paramString('js-rules'));
+ $js_rules = Minz_Request::paramString('js-rules', plaintext: true);
$this->saveFile(self::FILENAME, $js_rules);
}
$this->js_rules = '';
if ($this->hasFile(self::FILENAME)) {
- $this->js_rules = htmlentities($this->getFile(self::FILENAME) ?? '');
+ $this->js_rules = htmlspecialchars($this->getFile(self::FILENAME) ?? '', ENT_NOQUOTES, 'UTF-8');
}
}
}
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-10 11:19:46 +0000