summaryrefslogtreecommitdiffstats
path: root/apis/news.inc.php
diff options
context:
space:
mode:
Diffstat (limited to 'apis/news.inc.php')
-rw-r--r--apis/news.inc.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/apis/news.inc.php b/apis/news.inc.php
index ace41b21..610db289 100644
--- a/apis/news.inc.php
+++ b/apis/news.inc.php
@@ -9,10 +9,10 @@ if ($row !== false ) {
echo '<?xml version="1.0" encoding="UTF-8"?>' . "\n";
echo "<news>" . "\n";
echo "\t" . '<headline>' . "\n";
- echo "\t\t" . $row['title'] . "\n";
+ echo "\t\t" . htmlspecialchars($row['title']) . "\n";
echo "\t" . '</headline>' . "\n";
echo "\t" . "<info>" . "\n";
- echo "\t\t" . $row['content'] . "\n";
+ echo "\t\t" . htmlspecialchars(nl2br($row['content'])) . "\n";
echo "\t" . '</info>' . "\n";
echo "\t" . "<date>" . "\n";
echo "\t\t" . $row['dateline'] . "\n";