summaryrefslogtreecommitdiff
path: root/app/Module/UserJournalModule.php
diff options
context:
space:
mode:
Diffstat (limited to 'app/Module/UserJournalModule.php')
-rw-r--r--app/Module/UserJournalModule.php5
1 files changed, 3 insertions, 2 deletions
diff --git a/app/Module/UserJournalModule.php b/app/Module/UserJournalModule.php
index 178d27a22b..08a35316d4 100644
--- a/app/Module/UserJournalModule.php
+++ b/app/Module/UserJournalModule.php
@@ -19,6 +19,7 @@ use Fisharebest\Webtrees\Auth;
use Fisharebest\Webtrees\Database;
use Fisharebest\Webtrees\Filter;
use Fisharebest\Webtrees\Functions\FunctionsDate;
+use Fisharebest\Webtrees\Html;
use Fisharebest\Webtrees\I18N;
use Fisharebest\Webtrees\Theme;
@@ -86,7 +87,7 @@ class UserJournalModule extends AbstractModule implements ModuleBlockInterface {
foreach ($articles as $article) {
$content .= '<div class="journal_box">';
- $content .= '<div class="news_title">' . Filter::escapeHtml($article->subject) . '</div>';
+ $content .= '<div class="news_title">' . Html::escape($article->subject) . '</div>';
$content .= '<div class="news_date">' . FunctionsDate::formatTimestamp($article->updated) . '</div>';
if ($article->body == strip_tags($article->body)) {
$article->body = nl2br($article->body, false);
@@ -94,7 +95,7 @@ class UserJournalModule extends AbstractModule implements ModuleBlockInterface {
$content .= $article->body;
$content .= '<a href="editnews.php?news_id=' . $article->news_id . '&amp;ctype=user&amp;ged=' . $WT_TREE->getNameHtml() . '">' . I18N::translate('Edit') . '</a>';
$content .= ' | ';
- $content .= '<a href="editnews.php?action=delete&amp;news_id=' . $article->news_id . '&amp;ctype=user&amp;ged=' . $WT_TREE->getNameHtml() . '" onclick="return confirm(\'' . I18N::translate('Are you sure you want to delete ā€œ%sā€?', Filter::escapeHtml($article->subject)) . "');\">" . I18N::translate('Delete') . '</a><br>';
+ $content .= '<a href="editnews.php?action=delete&amp;news_id=' . $article->news_id . '&amp;ctype=user&amp;ged=' . $WT_TREE->getNameHtml() . '" onclick="return confirm(\'' . I18N::translate('Are you sure you want to delete ā€œ%sā€?', Html::escape($article->subject)) . "');\">" . I18N::translate('Delete') . '</a><br>';
$content .= '</div><br>';
}