From 565fcf08a319da8b0a0ff6d8ce98e93757e90286 Mon Sep 17 00:00:00 2001
From: Parziphal <asterixvader@gmail.com>
Date: Sat, 13 Feb 2016 20:15:21 -0500
Subject: [PATCH] FIxed vulnerability in forum search

---
 app/views/forum/search.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/views/forum/search.php b/app/views/forum/search.php
index a552469..7bbf7ba 100755
--- a/app/views/forum/search.php
+++ b/app/views/forum/search.php
@@ -1,7 +1,7 @@
 <div id="forum">
   <div style="margin-bottom: 1em;">
     <?= $this->formTag(['action' => "search"], ['method' => 'get'], function(){ ?>
-      <?= $this->textFieldTag("query", $this->params()->query, ['size' => 40]) ?>
+      <?= $this->textFieldTag("query", $this->h($this->params()->query), ['size' => 40]) ?>
       <?= $this->submitTag($this->t('.search'))?>
     <?php }) ?>
   </div>