summaryrefslogtreecommitdiffstats
path: root/templates/show_random_albums.inc.php
diff options
context:
space:
mode:
authorKarl 'vollmerk' Vollmer <vollmer@ampache.org>2007-01-08 18:14:38 +0000
committerKarl 'vollmerk' Vollmer <vollmer@ampache.org>2007-01-08 18:14:38 +0000
commit4818413e5fc72aac3fbc28a9ae6f28732339d54b (patch)
tree389ff2dcd072dd8c2624a6fe85ecddd76a38137b /templates/show_random_albums.inc.php
parent9a92a34e2c15942aae49b0928543079b23e9f874 (diff)
downloadampache-4818413e5fc72aac3fbc28a9ae6f28732339d54b.tar.gz
ampache-4818413e5fc72aac3fbc28a9ae6f28732339d54b.tar.bz2
ampache-4818413e5fc72aac3fbc28a9ae6f28732339d54b.zip
fixed unescaped username in urls
Diffstat (limited to 'templates/show_random_albums.inc.php')
-rw-r--r--templates/show_random_albums.inc.php3
1 files changed, 2 insertions, 1 deletions
diff --git a/templates/show_random_albums.inc.php b/templates/show_random_albums.inc.php
index 4f8ebb41..a3edaf9f 100644
--- a/templates/show_random_albums.inc.php
+++ b/templates/show_random_albums.inc.php
@@ -27,10 +27,11 @@ $web_path = conf('web_path');
foreach ($albums as $album_id) {
$album = new Album($album_id);
$album->format();
+ $name = scrub_out($album->name);
?>
<td>
<a href="<?php echo $web_path; ?>/albums.php?action=show&amp;album=<?php echo $album_id; ?>">
- <img src="<?php echo $web_path; ?>/image.php?thumb=1&amp;id=<?php echo $album_id; ?>" width="75" height="75" border="0" title="<?php echo $album->f_title; ?>">
+ <img src="<?php echo $web_path; ?>/image.php?thumb=1&amp;id=<?php echo $album_id; ?>" width="75" height="75" border="0" alt="<?php echo $name; ?>" title="<?php echo $name; ?>">
</a>
</td>
<?php } ?>
generated by cgit (git 2.34.1) at 2025-08-13 21:43:14 +0000