[FOLLOWUP][FEATURE] Avatar for backend users
[Packages/TYPO3.CMS.git] / typo3 / sysext / backend / Classes / Controller / ContentElement / ElementInformationController.php
index e8b8681..559686c 100644 (file)
@@ -367,7 +367,7 @@ class ElementInformationController {
 
                                        $rowValue = '<span class="pull-left">' . $icon . '</span>' .
                                        '<strong>' . htmlspecialchars($GLOBALS['BE_USER']->user['username']) . '</strong><br />'
-                                       . ($GLOBALS['BE_USER']->user['realName']) ? $GLOBALS['BE_USER']->user['realName'] : '';
+                                       . ($GLOBALS['BE_USER']->user['realName'] ? htmlspecialchars($GLOBALS['BE_USER']->user['realName']) : '');
                                }
                        }