#4307 closed defect (bug) (fixed)
Single quotes in category name breaks Atom feeds
Reported by: | Otto42 | Owned by: | rob1n |
---|---|---|---|
Milestone: | 2.2.1 | Priority: | high |
Severity: | critical | Version: | 2.2 |
Component: | General | Keywords: | has-patch |
Focuses: | Cc: |
Description
This code in function get_the_category_rss():
if ( 'atom' == $type ) $the_list .= "<category scheme='$home' term='$category->cat_name' />";
Will cause an invalid atom feed if the category name contains a single quote (as in "Otto's category"). The cat_name needs to be passed through htmlentities (probably) to handle the quotes and other special characters.
Attachments (1)
Change History (7)
#2
@
17 years ago
Not sure about the patch. It seems like it would work, but I figured I didn't want to double-encode it, so I grabbed the raw values for the Atom feed.
Note: See
TracTickets for help on using
tickets.
attribute_escape.