From 00b4267afd7e23673887aff9bacd3c2e2d26fe76 Mon Sep 17 00:00:00 2001
From: myvesta <38690722+myvesta@users.noreply.github.com>
Date: Sat, 12 Dec 2020 13:43:27 +0100
Subject: [PATCH] htmlentities() for token
---
web/add/user/index.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/web/add/user/index.php b/web/add/user/index.php
index 914eb3dd..1ed521e3 100644
--- a/web/add/user/index.php
+++ b/web/add/user/index.php
@@ -100,7 +100,7 @@ if (!empty($_POST['ok'])) {
// Flush field values on success
if (empty($_SESSION['error_msg'])) {
$_SESSION['ok_msg'] = __('USER_CREATED_OK',htmlentities($_POST['v_username']),htmlentities($_POST['v_username']));
- $_SESSION['ok_msg'] .= " / " . __('login as') ." ".htmlentities($_POST['v_username']). "";
+ $_SESSION['ok_msg'] .= " / " . __('login as') ." ".htmlentities($_POST['v_username']). "";
unset($v_username);
unset($v_password);
unset($v_email);