From 3ace0c1cd00e229b7e1e578a0184d188898ac9ea Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Phil=20H=C3=B6fer?= <phil@suma-ev.de>
Date: Mon, 13 Mar 2017 09:11:47 +0100
Subject: [PATCH] RSS-2.0-Ausgabe escaped jetzt besser

---
 resources/views/metager3resultsrss20.blade.php | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/resources/views/metager3resultsrss20.blade.php b/resources/views/metager3resultsrss20.blade.php
index 7b96fa956..f3120ac8d 100644
--- a/resources/views/metager3resultsrss20.blade.php
+++ b/resources/views/metager3resultsrss20.blade.php
@@ -3,17 +3,17 @@
       xmlns:opensearch="http://a9.com/-/spec/opensearch/1.1/"
       xmlns:atom="http://www.w3.org/2005/Atom">
    <channel>
-     <title>{{ $eingabe }} - MetaGer</title>
+     <title>{!! htmlspecialchars($eingabe, ENT_XML1, 'UTF-8'); !!} - MetaGer</title>
      <description></description>
      <opensearch:totalResults>{{ $resultcount }}</opensearch:totalResults>
      <opensearch:Query role="request" searchTerms="{{ htmlspecialchars($eingabe, ENT_QUOTES) }}"/>
 
   @foreach($metager->getResults() as $result)
      <item>
-       <title>{{ $result->titel }}</title>
-       <link>{{ $result->link }}</link>
+       <title>{!! htmlspecialchars($result->titel, ENT_XML1, 'UTF-8'); !!}</title>
+       <link>{!! htmlspecialchars($result->link, ENT_XML1, 'UTF-8'); !!}</link>
        <description>
-          {{ $result->descr }}
+          {!! htmlspecialchars($result->descr, ENT_XML1, 'UTF-8'); !!}
        </description>
      </item>
   @endforeach
-- 
GitLab