From b159bbe55dd3af41cbcb633d19a2a0efa744a1fb Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <noreply@fakecake.org>
Date: Thu, 27 Feb 2020 08:28:54 +0300
Subject: af_readability: sanitize content requested for embedding

---
 plugins/af_readability/init.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'plugins/af_readability/init.php')

diff --git a/plugins/af_readability/init.php b/plugins/af_readability/init.php
index 290a4545f..ef7809d3f 100755
--- a/plugins/af_readability/init.php
+++ b/plugins/af_readability/init.php
@@ -303,7 +303,7 @@ class Af_Readability extends Plugin {
 		$ret = [];
 
 		if ($row = $sth->fetch()) {
-			$ret["content"] = $this->extract_content($row["link"]);
+			$ret["content"] = sanitize($this->extract_content($row["link"]));
 		}
 
 		print json_encode($ret);
-- 
cgit v1.2.3