Nemcio/Grav-Admin-Plugin
1
0
Fork 0
mirror of https://github.com/getgrav/grav-plugin-admin.git synced 2025-11-13 08:46:04 +01:00
Code Issues Packages Projects Releases Activity

Escape user values in nav template

Browse Source
This commit is contained in:
Flavio Copes
2016-01-17 10:51:40 +01:00
parent 08135ee843
commit 5816a34e64
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
themes/grav/templates/partials/nav.html.twig
View File

@@ -9,12 +9,12 @@
{#{% if admin.authorize %}#} {#{% if admin.authorize %}#}
<div id="admin-user-details"> <div id="admin-user-details">
<a href="{{ base_url_relative }}/users/{{ admin.user.username }}"> <a href="{{ base_url_relative }}/users/{{ admin.user.username|e }}">
<img src="//www.gravatar.com/avatar/{{ admin.user.email|md5 }}?s=32" /> <img src="//www.gravatar.com/avatar/{{ admin.user.email|md5 }}?s=32" />
<div class="admin-user-names"> <div class="admin-user-names">
<h4>{{ admin.user.fullname }}</h4> <h4>{{ admin.user.fullname|e }}</h4>
<h5>{{ admin.user.title }}</h5> <h5>{{ admin.user.title|e }}</h5>
</div> </div>
</a> </a>
</div> </div>