Category names double escaped in profile module [#172597]

These get double-escaped so when you go to user/1/edit, the title shows up as "Eat at Joe & #039;'s"

I checked regular menu items and they seem fine, so this is probably something goofy in profile module.

Comment	File	Size	Author
#1	profile_check_plain.patch	598 bytes	RobLoach
#1

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

Comment #1

RobLoach

he/him

CreditAttribution: RobLoach commented 2 February 2008 at 00:45

Status:

Active

» Needs review

File	Size
profile_check_plain.patch	598 bytes

Removing the pass to check_plain seemed to fix the problem. I tried using the PHP tag in there for a simple CSS attack and it escaped the PHP tag cleanly. My guess is that #title is already passed through check_plain.

Comment #2

webchick

she/they

English

Vancouver 🇨🇦

CreditAttribution: webchick commented 2 February 2008 at 01:22

Status:

Needs review

» Reviewed & tested by the community

Yep, tested and works.

Comment #3

Gábor Hojtsy

he/him

Hungarian

Hungary

CreditAttribution: Gábor Hojtsy commented 3 February 2008 at 19:37

Status:

Reviewed & tested by the community

» Fixed

Thanks, committed.

Comment #4

Gábor Hojtsy

he/him

Hungarian

Hungary

CreditAttribution: Gábor Hojtsy commented 3 February 2008 at 19:51

Title:

Can't use apostrophes in profile categories

» Category names double escaped in profile module

Better title

Comment #5

Anonymous (not verified) CreditAttribution: Anonymous commented 17 February 2008 at 19:51

Status:

Fixed

» Closed (fixed)

Automatically closed -- issue fixed for two weeks with no activity.

Category names double escaped in profile module

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Thank you to these Drupal contributors

News items

Our community

Documentation

Drupal code base

Governance of community