escape html entities in forward/reply headers #1484904

release-0.6
svncommit 17 years ago
parent 687009eee0
commit c1cd53fd80

@ -496,7 +496,7 @@ function rcmail_create_reply_body($body, $bodyIsHtml)
{
$prefix = sprintf("<br /><br />On %s, %s wrote:<br />\n",
$MESSAGE->headers->date,
Q($MESSAGE->get_header('from')));
Q($MESSAGE->get_header('from'), 'replace'));
$prefix .= '<blockquote type="cite" style="padding-left:5px; border-left:#1010ff 2px solid; margin-left:5px; width:100%">';
$suffix = "</blockquote>";
}
@ -532,8 +532,8 @@ function rcmail_create_forward_body($body, $bodyIsHtml)
"</tbody></table><br>",
Q($MESSAGE->subject),
Q($MESSAGE->headers->date),
Q($MESSAGE->get_header('from')),
Q($MESSAGE->get_header('to')));
Q($MESSAGE->get_header('from'), 'replace'),
Q($MESSAGE->get_header('to'), 'replace'));
}
// add attachments

Loading…
Cancel
Save