From 0b421167171ab29199dbd4732c5182aaec094e21 Mon Sep 17 00:00:00 2001
From: Michael Save <savetheinternet@tinyboard.org>
Date: Tue, 14 Feb 2012 20:45:27 +1100
Subject: [PATCH] XSS in basic theme installation

---
 templates/themes/basic/info.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/templates/themes/basic/info.php b/templates/themes/basic/info.php
index d29a834a..b782a6d4 100644
--- a/templates/themes/basic/info.php
+++ b/templates/themes/basic/info.php
@@ -47,7 +47,7 @@
 	if(!function_exists('build_install')) {
 		function build_install($settings) {
 			if(!is_numeric($settings['no_recent']) || $settings['no_recent'] < 0)
-				return Array(false, '<strong>' . $settings['no_recent'] . '</strong> is not a non-negative integer.');
+				return Array(false, '<strong>' . utf8tohtml($settings['no_recent']) . '</strong> is not a non-negative integer.');
 		}
 	}