From 826f1a2be9d2ef187bbce5fac6b8400d4ff03a69 Mon Sep 17 00:00:00 2001
From: Damien Churchill <damoc@gmail.com>
Date: Tue, 27 Oct 2009 10:57:47 +0000
Subject: [PATCH] add < and > escaping to the html escape method

---
 deluge/ui/web/js/Deluge.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deluge/ui/web/js/Deluge.js b/deluge/ui/web/js/Deluge.js
index 63ea8816b..653371f0f 100644
--- a/deluge/ui/web/js/Deluge.js
+++ b/deluge/ui/web/js/Deluge.js
@@ -50,7 +50,7 @@ Ext.state.Manager.setProvider(new Ext.state.CookieProvider());
     
     Ext.apply(Ext, {
 	escapeHTML: function(text) {
-	    text = String(text);
+	    text = String(text).replace('<', '&lt;').replace('>', '&gt;');
 	    return text.replace('&', '&amp;');
 	},