Skip to:
Content

BuddyPress.org

Ticket #5694: 5694.02.patch

File 5694.02.patch, 644 bytes (added by imath, 11 years ago)
  • src/bp-activity/bp-activity-template.php

    diff --git src/bp-activity/bp-activity-template.php src/bp-activity/bp-activity-template.php
    index 6c5ea1f..c8c0ac7 100644
    function bp_has_activities( $args = '' ) { 
    589589        }
    590590
    591591        if ( empty( $search_terms ) && ! empty( $_REQUEST['s'] ) )
    592                 $search_terms = $_REQUEST['s'];
     592                $search_terms = htmlentities2( $_REQUEST['s'] );
    593593
    594594        // If you have passed a "scope" then this will override any filters you have passed.
    595595        if ( 'just-me' == $scope || 'friends' == $scope || 'groups' == $scope || 'favorites' == $scope || 'mentions' == $scope ) {