Remove double encoded entities in title attribute

author Michael M Slusarz <slusarz@curecanti.org>

Fri, 16 Jul 2010 16:50:15 +0000 (10:50 -0600)

committer Michael M Slusarz <slusarz@curecanti.org>

Fri, 16 Jul 2010 16:50:36 +0000 (10:50 -0600)
author Michael M Slusarz <slusarz@curecanti.org>
Fri, 16 Jul 2010 16:50:15 +0000 (10:50 -0600)
committer Michael M Slusarz <slusarz@curecanti.org>
Fri, 16 Jul 2010 16:50:36 +0000 (10:50 -0600)
diff --git a/framework/Core/lib/Horde.php b/framework/Core/lib/Horde.php

index 65e2a59..ee86ca3 100644 (file)
--- a/framework/Core/lib/Horde.php
+++ b/framework/Core/lib/Horde.php
@@ -1162,7 +1162,11 @@ HTML;
                      htmlspecialchars(
                          nl2br(htmlspecialchars($title, ENT_QUOTES, $charset)),
                          ENT_QUOTES, $charset));
+
                  error_reporting($old_error);
+
+                /* Remove double encoded entities. */
+                $title = preg_replace('/&amp;([a-z]+|(#\d+));/i', '&\\1;', $title);
              }
              $attributes['title.raw'] = $title;
          }
author	Michael M Slusarz <slusarz@curecanti.org>
	Fri, 16 Jul 2010 16:50:15 +0000 (10:50 -0600)
committer	Michael M Slusarz <slusarz@curecanti.org>
	Fri, 16 Jul 2010 16:50:36 +0000 (10:50 -0600)