From 0ddbc81349e76592e1fca615fe5bf7b969286de6 Mon Sep 17 00:00:00 2001
From: Tom Lake <tswsl1989@sucs.org>
Date: Mon, 21 Sep 2009 12:18:32 +0000
Subject: [PATCH] Escape things!

---
 templates/library.tpl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/templates/library.tpl b/templates/library.tpl
index ee518cd..cc736d0 100644
--- a/templates/library.tpl
+++ b/templates/library.tpl
@@ -16,7 +16,7 @@
 <div class="box">
 	<div class="boxhead"><h2>{$book.title}</h2></div>
 	<div class="boxcontent">
-		{if $book.image_url != ""}<img class="emblem" src="{$book.image_url}" alt="{$book.title}" />{/if}
+		{if $book.image_url != ""}<img class="emblem" src="{$book.image_url|escape}" alt="{$book.title|escape}" />{/if}
 		<p>{$book.author}</p>
 		<p>{$book.description}</p>
 		{if $book.onloan}<p>On loan</p>{else}<p>Book Available</p>{/if}
-- 
GitLab