From f9335835a353ee17966ee63be8aaec0b255a3d35 Mon Sep 17 00:00:00 2001
From: "Hahn Axel (hahn)" <axel.hahn@iml.unibe.ch>
Date: Wed, 20 Jan 2016 14:15:50 +0100
Subject: [PATCH] Enhancement #548 - add htmlentities()

---
 public_html/deployment/classes/project.class.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/public_html/deployment/classes/project.class.php b/public_html/deployment/classes/project.class.php
index 9a891c3c..30b4cc6d 100644
--- a/public_html/deployment/classes/project.class.php
+++ b/public_html/deployment/classes/project.class.php
@@ -199,7 +199,7 @@ class project extends base {
         $this->log(__FUNCTION__ . " start $sCommand");
         exec($sCommand, $aOutput, $iRc);
         $this->log(__FUNCTION__ . " ended command $sCommand");
-        $sReturn.=(count($aOutput)) ? implode("\n", $aOutput) . "\n" : "";
+        $sReturn.=(count($aOutput)) ? htmlentities(implode("\n", $aOutput)) . "\n" : "";
         /*
           $descriptorspec = array(
           0 => array("pipe", "r"), // stdin is a pipe that the child will read from
-- 
GitLab