From d9951a9ddd75f6e6771ea7afc1655d3721c6dafd Mon Sep 17 00:00:00 2001
From: root <root@www.cacert.org>
Date: Mon, 24 Nov 2008 12:50:09 +0000
Subject: [PATCH] Added XSS prevention

---
 pages/account/43.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pages/account/43.php b/pages/account/43.php
index 70a2dc9..00aa647 100644
--- a/pages/account/43.php
+++ b/pages/account/43.php
@@ -66,7 +66,7 @@
       $row = mysql_fetch_assoc($res);
       $_REQUEST['userid'] = $row['id'];
     } else {
-      printf(_("No users found matching %s"), $email);
+      printf(_("No users found matching %s"), sanitizeHTML($email));
     }
   }