Bug 1621 fixed : CSS vulnerability in register.php

login and mail_address fields must be filtered with htmlspecialchars.
merge from trunk

git-svn-id: http://piwigo.org/svn/branches/2.0@5937 68402e56-0260-453c-a942-63ccdbb3a9ee

1 files changed, 2 insertions, 2 deletions

diff --git a/register.php b/register.php
index ca00bccfc..3c500ec31 100644
--- a/register.php
+++ b/register.php
@@ -76,8 +76,8 @@ $template->assign(array(
   'U_HOME' => make_index_url(),
 
   'F_ACTION' => 'register.php',
-  'F_LOGIN' => $login,
-  'F_EMAIL' => $email
+  'F_LOGIN' => htmlspecialchars($login, ENT_QUOTES, 'utf-8'),
+  'F_EMAIL' => htmlspecialchars($email, ENT_QUOTES, 'utf-8')
   ));
 
 //-------------------------------------------------------------- errors display