From a2a6f36c1f7175e6b9c1d69d84d824f4b1c7b6e0 Mon Sep 17 00:00:00 2001
From: Sebastian Grewe <sebastian@grewe.ca>
Date: Thu, 9 Jan 2014 11:10:47 +0100
Subject: [PATCH] [IMPROVED] Auto-escape all used smarty variables

http://www.smarty.net/docs/en/variable.escape.html.tpl

Addresses #1233
---
 public/include/smarty.inc.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/public/include/smarty.inc.php b/public/include/smarty.inc.php
index d0824e7c..ba549af6 100644
--- a/public/include/smarty.inc.php
+++ b/public/include/smarty.inc.php
@@ -170,6 +170,7 @@ if ($config['smarty']['cache']) {
   $smarty->setCaching(Smarty::CACHING_LIFETIME_SAVED);
   $smarty->cache_lifetime = $config['smarty']['cache_lifetime'];
   $smarty->cache_dir = BASEPATH . "templates/cache/" . THEME;
+  $smarty->escape_html = true;
   $smarty->use_sub_dirs = true;
 }
 ?>