escape meta tags

author: alyx <alyx@aleteoryx.me> 2024-06-01 11:28:26 -0400
committer: alyx <alyx@aleteoryx.me> 2024-06-01 11:28:26 -0400
commit: 27a98f32de4ff4972ca08b046c0ff3df3f10fdd5 (patch)
tree: 82ff15ddc56a491bceb7a87cb759828d8baf95ac
parent: 38ffa09d5cb3b1d519515891cd62a8ef092184a4 (diff)
download: visitors_dot_php-27a98f32de4ff4972ca08b046c0ff3df3f10fdd5.tar.gz
visitors_dot_php-27a98f32de4ff4972ca08b046c0ff3df3f10fdd5.tar.bz2
visitors_dot_php-27a98f32de4ff4972ca08b046c0ff3df3f10fdd5.zip
1 files changed, 4 insertions, 4 deletions
diff --git a/visitors.php b/visitors.php
index c908ed4..a841d3a 100644
--- a/visitors.php
+++ b/visitors.php
@@ -621,10 +621,10 @@ function render_form() {
 <html>
 <head>
   <meta charset='utf-8' />
-  <meta name=description content="<?= @$config['blurb'] ?>" />
-  <meta name='og:name' content="<?= $config['title'] ?>">
-  <meta name='og:description' content="<?= @$config['blurb'] ?>">
-  <meta name='og:site_name' content="<?= @$config['site_name'] ?>">
+  <meta name=description content="<?= htmlentities(@$config['blurb']) ?>" />
+  <meta name='og:name' content="<?= htmlentities($config['title']) ?>">
+  <meta name='og:description' content="<?= htmlentities(@$config['blurb']) ?>">
+  <meta name='og:site_name' content="<?= htmlentities(@$config['site_name']) ?>">
   <meta name='og:type' content=website>
   <title><?= (isset($config['site_name']) ? $config['site_name'].' - ' : '').$config['title'] ?></title>
author	alyx <alyx@aleteoryx.me>	2024-06-01 11:28:26 -0400
committer	alyx <alyx@aleteoryx.me>	2024-06-01 11:28:26 -0400
commit	27a98f32de4ff4972ca08b046c0ff3df3f10fdd5 (patch)
tree	82ff15ddc56a491bceb7a87cb759828d8baf95ac
parent	38ffa09d5cb3b1d519515891cd62a8ef092184a4 (diff)
download	visitors_dot_php-27a98f32de4ff4972ca08b046c0ff3df3f10fdd5.tar.gz visitors_dot_php-27a98f32de4ff4972ca08b046c0ff3df3f10fdd5.tar.bz2 visitors_dot_php-27a98f32de4ff4972ca08b046c0ff3df3f10fdd5.zip