From 38b37d357fd8573727513143f61cd093efc26cc3 Mon Sep 17 00:00:00 2001
From: tassium <tassium@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Date: Thu, 23 Jan 2003 21:47:35 +0000
Subject: [PATCH] Prevent XSS silliness in memorized searches.

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@4461 7612ce4b-ef26-0410-bec9-ea0150e637f0
---
 src/search.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/search.php b/src/search.php
index dcd7b285..8c553224 100644
--- a/src/search.php
+++ b/src/search.php
@@ -383,7 +383,7 @@ if ($recent_count > 0) {
             if (isset($attributes['search_what'][$i]) &&
                 !empty($attributes['search_what'][$i])) {
             echo html_tag( 'td', $attributes['search_folder'][$i], 'left', '', 'width="35%"' )
-               . html_tag( 'td', $attributes['search_what'][$i], 'left' )
+               . html_tag( 'td', htmlentities($attributes['search_what'][$i]), 'left' )
                . html_tag( 'td', $attributes['search_where'][$i], 'center' )
                . html_tag( 'td', '', 'right' )
                .   "<a href=search.php?count=$i&amp;submit=save>"
-- 
2.25.1