memoize("htmllink");
eval q{use Time::Duration};
+ eval q{use CGI 'escapeHTML'};
my $changelog=[rcs_recentchanges(100)];
foreach my $change (@$changelog) {
$change->{when} = concise(ago($change->{when}));
- $change->{user} = htmllink("", "", $change->{user}, 1);
+ $change->{user} = htmllink("", "", escapeHTML($change->{user}), 1);
$change->{pages} = [
map {
$_->{link} = htmllink("", "", $_->{page}, 1);
return;
}
elsif ($form->submitted eq "Preview") {
- require IkiWiki::Render;
my $content=$form->field('editcontent');
my $comments=$form->field('comments');
$form->field(name => "editcontent",
cgi_hyperestraier();
}
- CGI::Session->name("ikiwiki_session_$config{wikiname}");
+ CGI::Session->name("ikiwiki_session_".encode_utf8($config{wikiname}));
my $oldmask=umask(077);
my $session = CGI::Session->new("driver:DB_File", $q,