Skip to content

Commit

Permalink
dev/core#3001 escape single quotes when rendering tokens in html format
Browse files Browse the repository at this point in the history
  • Loading branch information
@eileenmcnaughton
eileenmcnaughton committed Dec 20, 2021
1 parent eedf2b1 commit e8d1234
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion Civi/Token/TokenRow.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -280,7 +280,7 @@ public function fill($format = NULL) {
$htmlTokens[$entity][$field] = \CRM_Utils_String::purifyHTML($value);
}
else {
$htmlTokens[$entity][$field] = is_object($value) ? $value : htmlentities($value);
$htmlTokens[$entity][$field] = is_object($value) ? $value : htmlentities($value, ENT_QUOTES);
}
}
}
Expand Down

0 comments on commit e8d1234

Please sign in to comment.