*/\r
\r
//get the required variables\r
- $title = $vars['entity']->title;\r
+ $title = htmlentities($vars['entity']->title, ENT_QUOTES, 'UTF-8');\r
//$description = get_entity($vars['entity']->description);\r
$topic_owner = get_user($vars['entity']->owner_guid);\r
$group = get_entity($vars['entity']->container_guid);\r
$icon = elgg_view("profile/icon",array('entity' => $group, 'size' => 'small'));\r
//get the group and topic title\r
if ($group instanceof ElggGroup)\r
- $info .= "<p>" . elgg_echo('group') . ": <a href=\"{$group->getURL()}\">{$group->name}</a></p>";\r
+ $info .= "<p>" . elgg_echo('group') . ": <a href=\"{$group->getURL()}\">".htmlentities($group->name, ENT_QUOTES, 'UTF-8') ."</a></p>";\r
\r
$info .= "<p>" . elgg_echo('topic') . ": <a href=\"{$vars['url']}mod/groups/topicposts.php?topic={$vars['entity']->guid}&group_guid={$group->guid}\">{$title}</a></p>";\r
//get the forum description\r