From 1a5e872e34c30f8f10e73ecb5b430fddfff7c74d Mon Sep 17 00:00:00 2001
From: Janne Koschinski <janne@kuschku.de>
Date: Sun, 16 Oct 2016 22:20:08 +0200
Subject: [PATCH] Escape normal messages, too
---
backend/Database.php | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/backend/Database.php b/backend/Database.php
index 6f10dea..b3fb696 100644
--- a/backend/Database.php
+++ b/backend/Database.php
@@ -40,7 +40,7 @@ class Backend {
tmp.messageid,
sender.sender,
tmp.time,
- tmp.message,
+ replace(replace(tmp.message, '<', '<'), '>', '>'),
ts_headline(replace(replace(tmp.message, '<', '<'), '>', '>'), query) AS preview
FROM
(SELECT backlog.messageid,
@@ -67,7 +67,7 @@ class Backend {
SELECT backlog.messageid,
sender.sender,
backlog.time,
- backlog.message,
+ replace(replace(backlog.message, '<', '<'), '>', '>'),
ts_headline(replace(replace(backlog.message, '<', '<'), '>', '>'), query) AS preview
FROM backlog
JOIN sender ON backlog.senderid = sender.senderid
--
GitLab