From 9d944c3214d0d65d87ba962e97f05429e1c90c09 Mon Sep 17 00:00:00 2001
From: Jared Hancock <jared@osticket.com>
Date: Mon, 6 Oct 2014 15:20:00 -0500
Subject: [PATCH] oops: Properly format text thread bodies

---
 include/class.thread.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/class.thread.php b/include/class.thread.php
index f75901751..87b0789c1 100644
--- a/include/class.thread.php
+++ b/include/class.thread.php
@@ -1404,7 +1404,7 @@ class TextThreadBody extends ThreadBody {
         switch ($output) {
         case 'html':
             return '<div style="white-space:pre-wrap">'
-                .Format::clickableurls($this->body).'</div>';
+                .Format::clickableurls(Format::htmlchars($this->body)).'</div>';
         case 'email':
             return '<div style="white-space:pre-wrap">'.$this->body.'</div>';
         case 'pdf':
-- 
GitLab