Skin.php: HTML escape message pipe-separator

author Fomafix <fomafix@googlemail.com>

Wed, 13 Sep 2017 10:37:36 +0000 (12:37 +0200)

committer Fomafix <fomafix@googlemail.com>

Wed, 13 Sep 2017 10:37:36 +0000 (12:37 +0200)
author Fomafix <fomafix@googlemail.com>
Wed, 13 Sep 2017 10:37:36 +0000 (12:37 +0200)
committer Fomafix <fomafix@googlemail.com>
Wed, 13 Sep 2017 10:37:36 +0000 (12:37 +0200)
diff --git a/includes/skins/Skin.php b/includes/skins/Skin.php

index df7a9ed..eaee0d2 100644 (file)
--- a/includes/skins/Skin.php
+++ b/includes/skins/Skin.php
@@ -1611,7 +1611,7 @@ abstract class Skin extends ContextSource {
  
                 $result .= implode(
                         '<span class="mw-editsection-divider">'
-                               . wfMessage( 'pipe-separator' )->inLanguage( $lang )->text()
+                               . wfMessage( 'pipe-separator' )->inLanguage( $lang )->escaped()
                                 . '</span>',
                         $linksHtml
                 );
author	Fomafix <fomafix@googlemail.com>
	Wed, 13 Sep 2017 10:37:36 +0000 (12:37 +0200)
committer	Fomafix <fomafix@googlemail.com>
	Wed, 13 Sep 2017 10:37:36 +0000 (12:37 +0200)